Krasen Anatoliev Parvanov: Software QA and Security Engineer, QRTECH
The CRA and RED DA cybersecurity requirements introduce significant cybersecurity obligations that impact the entire lifecycle of digital and connected products. This talk aims to present shortly both regulations(mainly focusing on CRA) and the current status as well as to offer a structured, standards-aligned approach for navigating regulatory requirements and looking into actionable compliance practices. Building on research, discussion and relaying on real-world product development experience and a validated implementation guide based on ETSI EN 303 645, ISA/IEC 62443-4-1/-4-2, the session walks through the necessary activities for manufacturers and product teams that can be used to assess products and navigate the regulations both current RED DA and using it as a start point for the CRA. The talk also aims to cover the key points in the essential requirements, technical documentation and vulnerability management, and CE marking under both CRA. This session is designed to help both engineering and compliance professionals get a better understanding of the CRA and the essential processes needed to be addressed in order to have secure and market-ready products.
Explore the conference agenda
