Implementing the Cyber Resilience Act (CRA) Safely
Your Path to CRA Compliance – Structured, Practical, and With a Clear Roadmap
CRA Compliance with a Plan: From Current State to a Clear Roadmap
The Cyber Resilience Act (CRA) makes cybersecurity a mandatory requirement for connected products. Initial vulnerability reporting obligations will take effect on September 11, 2026, and full compliance with CRA requirements will become mandatory on December 11, 2027.
For equipment manufacturers, this means that processes, products, and responsibilities must be reviewed now. But which requirements are actually relevant? Where is action required? And which measures should be prioritized first?
Our CRA Workshop provides the clarity you need. Together, we assess your current situation, identify gaps, and develop a concrete roadmap with prioritized actions and clearly defined responsibilities on your path to CRA compliance.
Why the CRA Matters Now
By December 11, 2027, the requirements of the Cyber Resilience Act must be fully met. Otherwise, affected products may no longer be placed on the European market.
For machine and equipment manufacturers, the CRA is therefore not just a compliance issus, it is a prerequisite for ensuring the future marketability of their products.
What to Expect from the Workshop
Gain an Overview: Understand Standards & Regulations
We provide a comprehensive overview of the most relevant laws, standards, and regulatory requirements. These include the Cyber Resilience Act, EU Data Act, AI Act, and NIS2, with a particular focus on the implications for machine and plant engineering.
Assess Your Position: Where Does Your Company Stand Today?
We evaluate which measures have already been implemented, which are currently planned, and where further action is required.
Identify Gaps: Gap Analysis & Deep Dive
Our experts conduct a detailed deep dive into the relevant CRA topics together with your team. This creates a complete and reliable picture of your current implementation status.
Develop a Roadmap: From Analysis to Execution
Based on the insights gained, we create a structured roadmap covering both thematic priorities and timelines. The result: clear priorities, concrete actions, and well-defined responsibilities for the next steps toward CRA compliance.
Workshop at a Glance
Who Should Attend the CRA Workshop?
This workshop is designed for all stakeholders responsible for assessing the impact of the Cyber Resilience Act on products, processes, and organizational structures, and for actively driving implementation.
- Product Management
- Engineering Management
- Software Engineering
- CISOs and IT Management
- Quality, Certification, and Documentation Teams
- Executive Management, VPs of Technology, and CTOs
What You Will Take Away
After the workshop, you will have a solid foundation for decision-making and implementation. You will understand which requirements apply to your organization, where you currently stand, and which measures should be prioritized.
- Increased awareness of the Cyber Resilience Act
- Clear understanding of regulatory requirements
- Transparency regarding your current level of implementation
- A concrete roadmap toward CRA compliance
- Prioritized action items
- Clearly assigned responsibilities within your organization
General conditions
Duration: 5–6 hours
Location
At a Kontron location or as an offsite workshop at your premises
Price
€4,500 (price applies to workshops hosted at Kontron locations)
