Cybersecurity in Products with Digital Elements – EU Cyber Resilience Act

The EU’s new Cyber Resilience Act (CRA) came into force in 2024 and marks the beginning of a new era of security requirements for digital products on the European market. From September 2026, the regulation will be introduced gradually – and for you as a manufacturer or importer of products with digital elements, this means that processes, systems, applications, products and services must be reviewed and adapted. This course provides the insights and tools you need to stay ahead.

About the course

During the course, you will receive a clear and practical overview of:

• The international and European landscape for cybersecurity regulation
• What the EU’s Cyber Resilience Act means in practice – including current and upcoming requirements
• How to manage vulnerability and incident reporting
• Which product categories are covered and how classification works
• A concrete step‑by‑step process for achieving compliance
• The EU’s definition of “placing a product on the market”
• When and why a notified body may need to be involved
• The technical documentation required – and how to structure it effectively
• The current status of applicable standards and an overview of relevant ones
• The fundamental principles for demonstrating conformity with the regulation
• Recommended strategies to move your CRA work forward

By the end of the course, you will have a solid understanding of CRA requirements and a clear plan for how your organization can achieve full compliance efficiently.

Who is this course for?

This course is ideal for professionals working in product development, cybersecurity, product responsibility, regulatory compliance, or quality assurance for connected products. It is also valuable for anyone at a strategic level who needs to understand how the CRA affects products and internal processes.