CRA-compliant product development

To optimise your security and development processes, we determine the maturity level of your processes and make specific recommendations for improvement based on a gap analysis. Our experienced security consultants support the introduction of compliant processes in accordance with the requirements of the Cyber Resilience Act and coach your team in all relevant aspects of security engineering.

• CRA GAP analysis: Maturity assessment of the development and support processes 
• Implementation of CRA-compliant processes 
• Documentation in accordance with CRA
• Workshops and trainings to build up security awareness and know-how

Our competent security engineers support you in the effective and compliant development of cyber-secure products - from product classification according to CRA to risk analyses (TARA, IRA, DRA) and compliance tests. Our pre-qualified solution modules also help to accelerate your product development and manage security risks.

• Product classification 
• Creation of a cyber security management plan
• Development and documentation in accordance with CRA
• Risk analyses during the entire product life cycle (TARA, IRA, DRA)
• Development of secure update strategies
• Consultancy and support with CRA compliance testing

To ensure secure operation, we support you with comprehensive managed services such as vulnerability monitoring, a Product Incident Response Team (PSIRT) or PKI management.

• Automated vulnerability monitoring
• Vulnerability management
• Update management
• Support in the form of a customised Product Security Incident Response Team (PSIRT) 
• Provision of a public key infrastructure (PKI)