Welcome, Guest

Under the Hood: Practical Compliance for the EU Cyber Resilience Act

Overview

A 4-module course on Regulation (EU) 2024/2847. The learner takes a Zero Day disclosure, applies secure-by-default obligations, runs upstream supplier diligence, and faces an ENISA review. Approximately 90 minutes total. Course delivered in English.

Target Audience:

Product security managers, CISOs, manufacturers, distributors, importers of products with digital elements covered by CRA Article 3.

Features and USPs:

Vulnerability disclosure scenario. Secure-by-default Article 13 essential requirements review. Upstream supplier risk assessment. ENISA notification flow. Hot seat simulation under regulator pressure. Legally reviewed by qualified EU counsel.

Learning Objectives:

  • Manage a vulnerability disclosure meeting Article 14 standards
  • Apply Article 13 essential cybersecurity requirements during product design
  • Run upstream supplier diligence on third-party components
  • Coordinate Article 14(2) actively-exploited vulnerability notifications to ENISA
  • Navigate market surveillance and ENISA scrutiny