TRAINING

Courses built by the engineers running the work.

Four catalogue courses on V2X PKI post-quantum migration, automotive cybersecurity foundations, TARA for connected vehicle platforms, and cryptographic bills of materials. Plus bespoke programmes adapted to your stack.

WHY TRAINING FROM DIGITAL NORTH

Trainers are practitioners, not professional trainers.

Digital North works on production V2X PKI problems with OEMs, Tier 1 suppliers, fleet operators, and the regulators that approve them. The courses translate that work into structured teaching: case studies are real (anonymised), exercises mirror the decisions our engineering teams actually face, and the regulatory and architectural material is current.

The catalogue covers the regulatory, architectural, and operational layers of automotive cybersecurity rather than abstract security theory. The intent is that someone who completes a course leaves with material they can apply to their own programme on Monday morning, not with another bookshelf of certifications.

COURSE CATALOGUE

Four courses in the catalogue.

V2X PKI Post-Quantum Migration: A Practical Workshop

Duration: Two days Audience: OEM and Tier 1 security teams Prerequisites: Familiarity with X.509 and TLS

Covers CNSA 2.0 and NIST IR 8547 timelines, ML-DSA and hybrid certificate handling, HSM agility patterns, OTA bandwidth modelling for hybrid certificates, certificate revocation under PQC, and the operational playbook for cutover. Hands-on exercises against worked migration scenarios; participants leave with a sized migration plan template they can adapt to their fleet.

Automotive Cybersecurity Foundations for Engineering Leaders

Duration: One day Audience: VPs of engineering, programme managers, technical product owners Prerequisites: None

Covers the regulatory landscape (UNECE R155 and R156, ISO/SAE 21434, CSMS), the threat model for connected vehicles, what a VSOC actually does, where PSIRT sits in the org chart, and what cryptographic agility means in practice. Builds the shared vocabulary engineering leaders need to make sound calls on security investments without becoming security specialists.

TARA for Connected Vehicle Platforms

Duration: One day Audience: Security architects and risk-assessment leads Prerequisites: Prior exposure to ISO/SAE 21434

Threat-modelling methodology specific to V2X platforms, attack-tree construction for vehicle systems, post-quantum threat additions, and supply-chain TARA extensions. Walks through the parts of ISO/SAE 21434 that matter at the architectural level and shows how to keep a TARA living rather than letting it ossify after the first round.

Cryptographic Bill of Materials (CBOM) Workshop

Duration: Half day Audience: Inventory managers and security architects starting their PQC migration Prerequisites: None

Covers the CBOM artefact: capture techniques, integration with existing software bills of materials, regulatory expectations, and the operational reality of keeping a CBOM current across firmware releases. Participants leave with a CBOM template aligned to current regulatory expectations and a starting position for their own inventory work.

CUSTOM TRAINING

Bespoke programmes for your stack.

Many client teams want a course adapted to their specific stack: their actual HSM vendor, their actual fleet profile, their actual regulatory exposure. Digital North builds bespoke training programmes that meet these needs. Engagement starts with a scoping conversation; courses are typically delivered in two-to-four-day formats with materials produced specifically for the client.

TRAINING FAQ

Questions about the courses

What courses are in the Digital North training catalogue?

There are four catalogue courses: a two-day V2X PKI Post-Quantum Migration practical workshop for OEM and Tier 1 security teams; a one-day Automotive Cybersecurity Foundations course for engineering leaders; a one-day TARA for Connected Vehicle Platforms course for security architects and risk-assessment leads; and a half-day Cryptographic Bill of Materials (CBOM) Workshop for inventory managers and security architects starting their PQC migration. Bespoke programmes are also available.

Who delivers the training?

The trainers are practitioners, not professional trainers. Digital North works on production V2X PKI problems with OEMs, Tier 1 suppliers, fleet operators, and the regulators that approve them. The courses translate that work into structured teaching: case studies are real and anonymised, exercises mirror the decisions the engineering teams actually face, and the regulatory and architectural material is current.

Can training be customised to our stack?

Yes. Many client teams want a course adapted to their specific HSM vendor, fleet profile, and regulatory exposure. Digital North builds bespoke programmes that start with a scoping conversation, typically delivered in two-to-four-day formats with materials produced specifically for the client.

What will my team be able to do after a course?

The intent is that someone who completes a course leaves with material they can apply to their own programme on Monday morning, not another bookshelf of certifications. The catalogue covers the regulatory, architectural, and operational layers of automotive cybersecurity rather than abstract security theory.

REQUEST TRAINING

Tell us about your team.

Pricing and scheduling are a commercial conversation. Send the form below and we will respond within five business days with a sized proposal.