102 Pro

Cyber Resilience Act — Pro · Vulnerability handling and CE conformity

Practical implementation of the CRA: secure development, SBOM, vulnerability handling, reporting and technical documentation for CE conformity.

The CRA requires manufacturers, importers and distributors to build security into products with digital elements. This track covers secure design and development, the software bill of materials (SBOM), risk assessment, vulnerability handling and reporting, and the technical documentation that supports the declaration of conformity and CE marking.

Content

Requirement landscape and roles

Cyber Resilience Act Pro: requirement landscape and roles. Internal focus: å sørge for produktregister, sikkerhetskontroller og ansvar for sårbarhetshåndtering. Evidence: SBOM, risikovurdering, teknisk dokumentasjon, sårbarhetslogg og samsvarserklæring. Updated when source Regulation (EU) 2024/2847 / CELEX 32024R2847 changes.

  • Cyber Resilience Act: Detailed requirement map
    10 min
  • Cyber Resilience Act: Roles and responsibility matrix
    10 min
  • Cyber Resilience Act: Risk points to address
    10 min
  • Quiz: Kravbilde og roller
    5 min

Controls and workflow

Cyber Resilience Act Pro: controls and workflow. Internal focus: å sørge for produktregister, sikkerhetskontroller og ansvar for sårbarhetshåndtering. Evidence: SBOM, risikovurdering, teknisk dokumentasjon, sårbarhetslogg og samsvarserklæring. Updated when source Regulation (EU) 2024/2847 / CELEX 32024R2847 changes.

  • Cyber Resilience Act: Control activities
    10 min
  • Cyber Resilience Act: Workflow and process
    10 min
  • Cyber Resilience Act: Quality assurance
    10 min
  • Quiz: Kontroller og arbeidsflyt
    5 min

Evidence and reporting

Cyber Resilience Act Pro: evidence and reporting. Internal focus: å sørge for produktregister, sikkerhetskontroller og ansvar for sårbarhetshåndtering. Evidence: SBOM, risikovurdering, teknisk dokumentasjon, sårbarhetslogg og samsvarserklæring. Updated when source Regulation (EU) 2024/2847 / CELEX 32024R2847 changes.

  • Cyber Resilience Act: What must be documented
    10 min
  • Cyber Resilience Act: Reporting obligations
    10 min
  • Cyber Resilience Act: Audit trail
    10 min
  • Quiz: Dokumentasjon og rapportering
    5 min