CRA Standards Unlocked – EU Tour Bucharest

An European dialogue on CRA compliance

From legislative requirements to practical tools for CRA compliance

With the adoption of the Cyber Resilience Act (CRA), the European Union is introducing new cybersecurity requirements for products with digital elements placed on the European market. The regulation establishes measures that must be followed throughout the entire product lifecycle, from development to vulnerability management and security updates.

For companies, especially SMEs and open-source software developers, the challenge lies in turning these requirements into practical compliance measures. Which standards should be followed? How can organizations assess their current level of preparedness? And, most importantly, what tools are available to support this process?

These questions were at the heart of CRA Standards Unlocked – EU Tour Bucharest, an event held on 24 June 2026 at the Romanian Senate, inside the Palace of Parliament, and organized by NCC RO – National Coordination Centre for Cybersecurity. The event brought together representatives of the European Cybersecurity Competence Centre (ECCC), European experts, policymakers, researchers and teams involved in EU-funded projects dedicated to developing the standards, guidance and practical tools needed to implement the Cyber Resilience Act.

Expertware, part of the European OCCTET consortium

During the closed-door session "Connecting the Cybersecurity Community: ECCC & NCC-RO", Tiberiu Baraboi, CEO of Expertware, presented the OCCTET platform during the discussion "How to Comply with the CRA – Demos of Tools and Resources Available to SMEs", highlighting how the tools developed within the project support SMEs throughout the Cyber Resilience Act compliance process.

Funded by the European Union and the European Cybersecurity Competence Centre (ECCC) and coordinated by the Eclipse Foundation, one of the world's leading open-source foundations, OCCTET brings together a consortium consisting of Expertware, AboutCode, European DIGITAL SME Alliance (DSME), Bitsea, Double Open and Red Alert Labs.

The project's objective is to develop a free, easy-to-use open-source toolkit that helps SMEs and open-source software projects understand and implement the requirements of the Cyber Resilience Act without unnecessary costs or complexity.

Within the OCCTET consortium, Expertware developed the CRA self-assessment questionnaire, a free tool that enables organizations to quickly assess their current level of compliance with the regulation. Through this self-assessment, companies can identify where improvements are needed and gain a better understanding of the steps required to align with the new European requirements.

A step forward towards a more secure digital ecosystem

The Cyber Resilience Act is one of the European Union's most important initiatives for strengthening the security of digital products and increasing cyber resilience across Europe. Beyond compliance obligations, the regulation aims to foster the development of more secure products, increase user trust and reduce the risks associated with software vulnerabilities.

Through its involvement in the European OCCTET project and the development of the CRA self-assessment questionnaire, Expertware actively contributes to transforming legislative requirements into practical tools that support organizations developing and marketing digital products.

Participation in CRA Standards Unlocked – EU Tour Bucharest reaffirms Expertware's commitment to supporting European cybersecurity initiatives and helping organizations adapt to the new requirements introduced by the Cyber Resilience Act.

Cloud image

90 Days of Enterprise-Grade Cyber Defense

Step into the future of cybersecurity with full access to a unified, intelligent platform — free for 90 days. Empower your security team with:

  • Advanced SIEM for real-time visibility, smart alerting, and deep forensics across cloud, on-prem, and hybrid environments

  • Continuous Vulnerability Management to identify, prioritize, and remediate risk across all assets

  • Live Cyber Threat Intelligence integrated directly into your workflows, with global insights and attacker profiling

  • AI-Powered Threat Detection that learns from your environment, explains alerts in plain language, and suggests next steps

  • Built-in Compliance Readiness for NIS2, GDPR, ISO 27001, and more, with automated reporting and audit tools

Whether you're managing a lean SOC or a full-scale enterprise security team, this platform gives you the tools to detect faster, respond smarter, and stay ahead of evolving threats — all without the complexity.

Experience enterprise-grade protection, streamlined workflows, and total control.

Your 90-day head start begins now.

Unlock Your 3-Month Free Trial