With the adoption of the Cyber Resilience Act (CRA), the European Union is introducing new cybersecurity requirements for products with digital elements placed on the European market. The regulation establishes measures that must be followed throughout the entire product lifecycle, from development to vulnerability management and security updates.
For companies, especially SMEs and open-source software developers, the challenge lies in turning these requirements into practical compliance measures. Which standards should be followed? How can organizations assess their current level of preparedness? And, most importantly, what tools are available to support this process?
These questions were at the heart of CRA Standards Unlocked – EU Tour Bucharest, an event held on 24 June 2026 at the Romanian Senate, inside the Palace of Parliament, and organized by NCC RO – National Coordination Centre for Cybersecurity. The event brought together representatives of the European Cybersecurity Competence Centre (ECCC), European experts, policymakers, researchers and teams involved in EU-funded projects dedicated to developing the standards, guidance and practical tools needed to implement the Cyber Resilience Act.

