Preparation for Regulation-2024/2847-EN-EUR-Lex (CRA)
General criteria for applicability of CRA
Exceptions (see diagram):
- Aquanautic equipment
- Civil aeronautics
- Vehicles
- In-vitro-diagnostics and medicine products
- Products for national security or defence
Know your product category !
- Based on ETSI EN 303 645 as the leading international standard we offer a clarification of the cybersecurity requirements for your product
- According to CRA your product will be classified as
- Default (Lowest Risk Category) --- almost 90% of all products
- Important Class 1 (Mid-Risk Category) --- approx 5% - 10% of all products
- Important Class 2 (Mid-High-Risk Category) --- less than 5% of all products
- Critical Class (High-Risk Category) --- the rest
Follow and use our wizzard to get a more thorough understanding of the differentiations and the relevance
www.cradora.com (currently only in German)
Classification leads to Conformity Requirements
- From Self-Assessment up to Conformity based on full quality assurance and formal "Declaration for conformity"
- Preparational step in Germany can be to akquire the "IT-Sicherheitskennzeichen"
German BSI
- BSI offers the possibility to apply for the "IT-Sicherheitskennzeichen" as a preparation for CRA-conformity which will be mandatory in 2027
- We train your teams and support your activities to achieve a registration on BSI Website as an official way for consumers to find cybersecurity conformance informations about products.
IT-Sicherheitskennzeichen
- We offer support to prepare according to the "Verfahrensbeschreibung_zur_Erteilung_IT-SiKz"
- We - jointly with your teams - work on understanding and fullfilling all the requirements derived from the cybersecurity regulations
- We - jointly with your teams - work on filling out all required forms based on your appropriate processes
Go to our Consulting section and start your own learning and experience based on our specifically trained ChatGPT-Model
Strategic consulting
We record and analyze your process. Major focus is on improving efficiency and productivity. The usage of methods like value stream mapping can reveal gaps and potentials for improvement as well as strengths and opportunities. Jointly with your teams relevant parameters will be identified and a list of measures can be provided.
Focus Topic Security
To support your company on the way to improve your cyber security concept, we offer a systematic approach to combine and assess vulnarabilities and criticality. Cooperatively we establish a tailored risk analysis including prioritization to allow for well-considered decisions and to create a strategic action plan.
Project Management
We help you to develop a strategic solution for your current and upcoming project management challenges.
Based on vast project experience from cradle to grave, we do not favour tedious analysis task forces and slide show marathon meetings. We provide clean and simple help and offer supportive leadership trainings.
Dr. Joachim Leder
