Supported Implementation of the EU Cyber Resilience Act: From Regulation to Practice

The EU Cyber Resilience Act (CRA) introduces stringent security and compliance requirements for digital products across their entire lifecycle. This talk presents a practical, tool-supported approach to implementing CRA requirements within existing development processes. Based on real-world experience, it showcases how security tooling ranging from threat modeling to vulnerability management can be integrated into Secure Software Development Lifecycles (SSDLC) to ensure both technical robustness and regulatory compliance. Attendees will gain actionable insights into process design, tool selection, and documentation strategies aligned with CRA obligations.

Value for the audience:
By attending this session, participants will gain practical strategies to achieve compliance with the EU Cyber Resilience Act efficiently, using modern tools and automation. They will learn how to integrate CRA requirements into existing development processes and avoid common pitfalls through real-world examples and a hands-on case study.

Problems addressed:
Alignment of CRA Requirements with Existing Development Processes

Lack of Practical Guidance and Tool Integration

Complexity of CRA Compliance for Manufacturers

Talk language: English
Level: Advanced
Target group: Developments Leads, Compliance Officers, CTOs

Company:
CyberUp GmbH

BSc MSc Alexander Aigner

Stephan Hutterer