APMA’s Institute for Automotive Cybersecurity and KPMG in Canada join forces on cyber preparedness survey


TORONTO, Nov. 16, 2020 — Nearly a third (30 per cent) of Automotive Parts Manufacturers’ Association (APMA) members revealed that they had a cyber breach in the last 12 months, according to a recent survey by the Automotive Parts Manufacturers’ Association Institute of Automotive Cybersecurity (apmaIAC) and KPMG in Canada.


Electric vehicles, autonomous driving, and connected cars have dominated the agenda of automotive industry leaders in recent years. This migration to the digital plain makes every electronic component a potential point of vulnerability.


Worryingly, the survey also finds that seven in ten organizations have not changed the level of their funding around digital transformation and cybersecurity initiatives, and only 32 per cent have an enterprise-wide cyber strategy.


“This is a critical time for the automotive industry, as connected vehicles and digital manufacturing techniques become commonplace,” says John Heaton, partner, Cyber Security and Resilience, KPMG in Canada. “Auto parts makers need to make cybersecurity an end-to-end priority, because the threats are real and becoming increasingly more prevalent.”


“With the publication of the ISO 21434 standard this winter, the automotive sector is poised to further the journey towards a more cybersecure culture and the launch this May of the Institute for Automotive Cybersecurity (apmaIAC) was to help assist our members succeed on this journey,” shared Flavio Volpe, President of the APMA.


Auto industry leaders identified the following top barriers to cyber preparedness:

  1. Lack of the right talent
  2. Low visibility into the key risks
  3. Lack of leadership support
  4. Unclear return on investment.


The findings of the joint apmaIAC / KPMG in Canada Cybersecurity Survey, conducted in mid-September, will be presented in full on November 18 at 1:30pm EST during this week’s first-ever virtual APMA conference. Register for the conference here.



The Automotive Parts Manufacturer’s Association (APMA) is Canada’s national association representing OEM producers of parts, equipment, tools, supplies, advanced technology, and services for the worldwide automotive industry. The Association was founded in 1952 and its members account for 90% of independent parts production in Canada. In 2018, automotive parts shipments were over $35 Billion, and the industry employment level was over 100,000 people.



Automotive Parts Manufacturers’ Association (APMA) of Canada and CloudGRC Inc. launched the APMA Institute of Automotive Cybersecurity (APMAIAC). The institute will assist in providing guidance and best practices to Canadian automotive parts manufacturers, helping support the privacy/safety/security culture. The apmaIAC will focus on the following four areas:




KPMG LLP, an Audit, Tax and Advisory firm (home.kpmg.ca) is a limited liability partnership, established under the laws of Ontario, and the Canadian member firm of KPMG International Cooperative (“KPMG International”). KPMG has more than 7,000 professionals/employees in over 40 locations across Canada serving private- and public-sector clients. KPMG is consistently recognized as an employer of choice and one of the best places to work in the country.

The independent member firms of the KPMG network are affiliated with KPMG International, a Swiss entity. Each KPMG firm is a legally distinct and separate entity and describes itself as such.


For media inquiries:

Caroline Van Hasselt

Corporate Communications
KPMG in Canada
(416) 777-3328



Flavio Volpe
Automotive Parts and Manufacturers Association of Canada
(416) 856-0345

Twitter: https://twitter.com/flaviovolpe1
LinkedIn: https://www.linkedin.com/in/flaviovolpe1/