Industrial Automation branch INA
of Fraunhofer IOSB
Industrial Automation branch INA
of Fraunhofer IOSB

Cyber Resilience Act (CRA)

Your partner for the implementation of the CRA:

The new EU Cyber Resilience Act (CRA) poses new challenges for manufacturers of products with digital elements. We support you in meeting the requirements and thus secure market access for your products in the EU.

Our range of services:

1. Analysis & evaluation:

  • CRA check: We analyze your products and processes with regard to the requirements of the CRA.
  • Risk assessment: We identify potential security gaps and assess the risks for your products.
  • Gap analysis: We compare your current status with the CRA requirements and identify any need for action.
  • Classification: We help you to classify your products and assign them to an appropriate security level (critical, important or basic category).

2. Implementation & certification:

  • Development & Implementation: We support you in the development and implementation of secure software and hardware that meets CRA requirements.
  • Security concepts: We create customized security concepts for your products and processes.
  • Documentation: We create the necessary documentation for the conformity assessment.
  • Training: We train your employees on the relevant aspects of the CRA.
  • Certification support: We support you in selecting a suitable certification body and guide you through the certification process.

3. Post-market monitoring:

  • Vulnerability Management: We help you to identify and fix security vulnerabilities after market launch.
  • Incident Response: We help you set up an incident response team and select and implement the appropriate tools.
  • Reporting: We prepare you for the obligation to report to the relevant authorities and work with you to test the necessary processes in the event of an emergency.

 

Your benefits:

  • Legal certainty: You meet the requirements of the CRA and avoid fines.
  • Market access: You secure market access for your products in the EU.
  • Competitive advantage: You position yourself as a trustworthy provider of secure products.
  • Reputation protection: You minimize the risk of security incidents and protect your reputation.
  • Cost efficiency: You benefit from our expertise and avoid unnecessary costs.

Our team:

We have an experienced team of IT security experts with extensive knowledge of the CRA and harmonizing standards, such as IEC 62443 or ETSI EN 303 656. We work closely with you to develop tailor-made solutions for your individual needs.