Who is affected
Manufacturers, importers and distributors of hardware and software products with digital elements placed on the EU market (incl. IoT, mobile apps, network equipment).
Skip to main content
Cyber Resilience Act
The Cyber Resilience Act (CRA) holds manufacturers, importers and distributors of products with digital elements responsible for cybersecurity throughout the product lifecycle. The courses cover secure development, vulnerability handling and conformity documentation.
Information technology
Telecommunications
Manufacturing
Key requirements
- Security by design and development
- Vulnerability handling and updates (at least 5 years)
- SBOM (Software Bill of Materials) and technical documentation
- Active exploitation reported to ENISA within 24h
- CE marking and declaration of conformity
Available certificates
Certification track
Cyber Resilience Act
-
Open certification: Cyber Resilience Act - BasicBasic
Cyber Resilience Act - Basic
Short introduction to who Cyber Resilience Act applies to, the core requirements and what employees need to understand.
From 35 € Start →35 min · Bronze / participant / yr -
Open certification: Cyber Resilience Act - ProPro
Cyber Resilience Act - Pro
Practical implementation of Cyber Resilience Act: ownership, process, controls and documentation.
You must complete Basic before you can take Pro.
From 40 € Start →55 min · Silver / participant / yr -
Open certification: Cyber Resilience Act - ExpertExpert
Cyber Resilience Act - Expert
Deep dive for accountable roles: implementation, exceptions, audit evidence and ongoing updates for Cyber Resilience Act.