What is the Cyber Resilience Act and why is it important for the EU market? 

The recently proposed Cyber Resilience Act (CRA) by the European Commission is set to revolutionize the way business approaches cybersecurity. The CRA is not just another set of regulations; it’s a strategic move to enhance the security of digital products across the EU. Covering everything from baby monitors to smartwatches, this legislation demands manufacturers and retailers to meet cybersecurity requirements throughout a product’s lifecycle, creating a safer and more resilient digital ecosystem. 

The 1st of December the European Parliament and the Council agreed on it and is expected to enter into force in 2024, after a two-year transition period for most of the provisions. The CRA is a disruptive and ambitious legislation that will have a significant impact on the EU market and beyond, and will require the involvement and cooperation of all relevant stakeholders, from manufacturers and retailers to consumers and users, to ensure its successful implementation and enforcement. 

Key Objectives of the CRA:

Elevating Cybersecurity Standards: The CRA introduces mandatory cybersecurity requirements, ensuring secure development, regular security updates, and effective vulnerability management. This will necessitate investments in cybersecurity capabilities and processes, aligning your business with the changing regulatory landscape. 

Transparency and Accountability: A common EU cybersecurity certification scheme will be established, using CE marking to indicate compliance. This not only streamlines the certification process but also reduces administrative burdens and costs, ultimately enhancing your business’s competitiveness in the EU market. 

Empowering Consumers and Businesses: By providing clear and accessible information on cybersecurity features, certification levels, and contact details of the manufacturer, businesses empower consumers to make informed choices. This increased transparency not only builds trust but also holds businesses accountable for their products. 

The CRA is expected to bring significant benefits to the EU market, such as:

Competitiveness and Innovation: Compliance with the CRA creates a level playing field, reducing fragmentation and compliance costs. This fosters customer trust, enhancing the competitiveness and innovation of the EU industry. 

Security and Resilience: A harmonized and secure digital ecosystem reduces the exposure and impact of cyberattacks, strengthening the protection of personal data and privacy. This aligns with broader EU initiatives, offering a safer space for businesses to thrive. 

Global Leadership in Cybersecurity: Businesses contributing to high standards and best practices under the CRA will play a role in establishing the EU’s strategic autonomy and global leadership in cybersecurity. This not only enhances the reputation of your business but also fosters fair competition on a global scale. 

The CRA is more than a set of regulations. It’s an opportunity for the market to grow in a secure, competitive, and innovative environment. We encourage you to get familiar with the changes brought by the CRA, ensuring your business not only complies with regulations but also positions itself as a leader in the dynamic world of cybersecurity.  

The CRA is part of the EU’s 2020 Cybersecurity Strategy, which seeks to enhance the EU’s collective resilience against cyber threats and ensure that all citizens and businesses can fully benefit from trustworthy and reliable services and digital tools. The CRA is also aligned with the NIS2 Framework, which sets out rules for the security of network and information systems in the EU. 



Ready to meet the only technology partner you'll ever need?

Cloudica needs the information you provide to contact you about our services. You may unsubscribe from these communications at any time. For information on how to unsubscribe, as well as our privacy practices and commitment to protecting your privacy, please review our Privacy policy.

Once the above questions have been answered, a disaster recovery and backup readiness index can be calculated based on the following scale: 

  • Level 1: Inadequate – The organization has significant gaps in its disaster recovery and backup posture.  
  • Level 2: Developing – The organization has some disaster recovery and backup processes in place, but significant improvements are needed.  
  • Level 3: Mature – The organization has a mature disaster recovery and backup posture, but there is room for improvement.  
  • Level 4: Robust – The organization has a strong disaster recovery and backup posture and is well-prepared to address potential disruptions.  
  • Level 5: Exceptional – The organization has a comprehensive and mature approach to disaster recovery and backup. 

The disaster recovery and backup readiness index can be calculated by assigning a score of 1-5 to each question based on the level of readiness demonstrated. The scores are then averaged across all questions in each category to determine the readiness level for that category. The overall disaster recovery and backup readiness index is calculated by averaging the readiness levels across all categories. 

Level 1: Basic
You have minimal cybersecurity processes in place and face a high risk of cyberattacks. Immediate attention and significant improvements are necessary to enhance your security posture.

Level 2: Developing
You have some cybersecurity processes in place but require substantial improvements to reach a mature state. You should focus on strengthening your policies, procedures, and security controls.

Level 3: Mature
You have a solid cybersecurity posture, but there is still room for improvement. You should continue enhancing your processes, monitoring capabilities, and incident response practices.

Level 4: Advanced
You have a strong cybersecurity posture and are well-prepared to address potential threats. However, you should remain proactive and stay abreast of emerging threats and technologies to maintain your advanced level of security.

Level 5: Leading
You have a comprehensive and mature approach to cybersecurity. You are a leader in cybersecurity best practices and continually innovate to stay ahead of evolving threats.

Dziękujemy za rejestrację!

Link do webinaru otrzymają Państwo mailowo dzień przed spotkaniem.

23 Marca 2023

10:00 via MS Teams

Tomasz Woźniak

Thank you!

To download our e-book „The best way to Outsource IT Staff” click button below