Hero Image

GET READY FOR
CYBER RESILIENCE ACT

Act Now and Avoid Heavy Fines

  • ✅ Regulatory Compliance
  • ✅ Improved Product Security
  • ✅ Competitive Advantage
Get CRA-Compliant

My CRA Support and Compliance Services

Secure Product Lifecycle and Vulnerability Handling

Put in place all mandatory security processes and draw up a technical documentation.

Gap Analysis and Conformity Assessment Support

Scan your existing security processes and documentation to identify possible deviations.

In-Depth Product Security Trainings

Gain detailed knowledge about exploitation and mitigation techniques to build a strong security mindset.

Your Route To CRA Conformity

/user/pages/01.home/03._route/route_to_cyber_resilience_act.png

In future, economic operators must comply with essential cybersecurity requirements and obligations laid down by Cyber Resilience Act (CRA) when placing a product with digital elements on the Union market. Non-compliance may lead to administrative fines of up to 15 million euros or more.

As a specialized CRA implementer, I support product manufacturers to achieve CRA conformity in a timely and cost-effective manner. You can expect clear recommendations tailored to your needs and a smooth route to market without unnecessary delays or costs.

My CRA support and compliance services ensure that your affected products are designed, developed, manufactured, delivered and maintained in a secure manner and help to gain sustainable competitive advantages.

My Profile and Qualifications

/user/pages/01.home/04._quali/portrait_xrayed.png

I've built security-critical embedded devices for German cars.

🔘 Bachelor and Master in Cybersecurity at Ruhr-University Bochum
🔘 3+ Years as Embedded Security Engineer in Automotive
🔘 6+ Years as Lead Product Security Architect in Automotive
🔘 Specialized CRA Implementer as Freelancer

Feel free to contact me for any questions and challenges regarding product security.

Regulatory Compliance

Improved Product Security

Competitive Advantage

Cost-Effective Implementation

Strong Security Mindset

Attractive Package Deals

Frequently Asked Questions

/user/pages/01.home/06._frequently-asked-questions/cyber_resilience_act_faqs.png
Does my product fall within the scope of the CRA?
In general, CRA does apply to all connectable hardware and software products intended to be made available on the Union market in the course of a commercial activity. In particular, CRA does apply to
✔️ products that are able to establish a direct or indirect logical or physical data connection to other devices or networks
✔️ free and open-source software intended for commercial activities
✔️ remote data processing solutions required by affected products to perform one of their functions

Which products fall outside the scope of the CRA?
In general, CRA does not apply to products to which other Union legal acts apply and products that have no capability to connect to other devices or networks. In particular, CRA does not apply to
✖️ medical devices
✖️ motor vehicles
✖️ civil aviation
✖️ marine equipment
✖️ spare parts to replace identical components in products with digital elements
✖️ products developed or modified exclusively for national security or defense purposes
✖️ products specifically designed to process classified information
✖️ products and services that are not supplied in the course of a commercial activity
✖️ products provided for a service for which a fee is charged solely to recover actual costs
✖️ products funded by donations without the intention of making a profit
✖️ products which are developed or modified by a public administration entity exclusively for its own use
✖️ natural or legal persons who only contribute with source code to free and open-source software that are not under their responsibility

Bring Your Product Into CRA Conformity

Feel free to contact me for more detailed information.

Your submitted data will be processed and used to handle your request. Click here for more details.