CRA Standards Unlocked - EU Tour in Zagreb

CRA Standards Unlocked - EU Tour in Zagreb
20 January 2026 09:00–17:00
Zagreb, Croatia

Registration for this event is now closed - contact info[@]cyberstand.eu if you wish to attend.

Venue: Rooms B1, B2, B3 and B4 of Algebra Bernays University (Google maps), Gradišćanska 24, 10000 Zagreb, Hrvatska

 

The Cyber Resilience Act (CRA) will introduce mandatory cybersecurity requirements for products with digital elements placed on the EU market. For many SMEs, the challenge is not understanding that the CRA applies, but how to comply in practice, which standards to follow, and which tools, guidance, and funding opportunities are available to support compliance. 

This workshop directly addresses that gap by helping SMEs understand, prepare for, and comply with the EU Cyber Resilience Act (CRA), translating regulatory and standardisation requirements into practical guidance and tools.

Organised by the EU-funded projects CYBERSTAND.eu and STAN4CRA.eu, the event takes place at Algebra Bernays University in Zagreb and is specifically designed for SMEs developing, integrating, or commercialising digital products and software.

The workshop brings together key EU-funded experts and projects working on the design of SME-friendly standards and CRA compliance tools:

  • CYERSTAND.eu: Managing open calls to fund contributions to develop standards for the CRA.
  • OCCTET: Open-source toolkit to automate the compliance process for Free and Open Source Software (FOSS) used in digital products
  • CURIUM: Tools and services to provide information, guidance, trustworthy security testing, and streamlined compliance with the CRA
  • CRACoWI: Simplifying compliance with the CRA by providing automated tools for cybersecurity certification, documentation, and assessments.
  • CONFIRMATE: Open-source tools to facilitate and automate compliance with the CRA.

 

DOWNLOAD THE SLIDES

 

 

 

 

Why join

  • Understand what the CRA requires and its implications for SMEs.
  • Learn which standards matter and how they support compliance.
  • Presentations from CRA standards rapporteurs on ongoing standardisation work.
  • Discover compliance tools, practical guides, and funding available through CRA-related EU-funded projects.
  • Gain practical insights tailored to SME on how CRA requirements translate into product development and conformity processes.

 

Agenda

Venue: Gradišćanska 24, 10000 Zagreb, Hrvatska

Time (CET)SessionSpeakers
9:00 - 9:30Registration and welcome coffee 
9:30 - 10:30

Setting the Scene: 

  • Introduction to the CRA
  • Introduction of the Croatian Cybersecurity Agency
  • The role of European Standards Organisations and open consultations

Filipe Jones-Mourão, European Commission

Lucia Lanfri, CCMC Project Manager, CEN-CENELEC 

George Sharkov, ETSI Cyber EUSR Vice-Chair

Zlatan Moric - Algebra Bernays University

10:30 - 11:15CRA compliance tools and funding opportunities for SMEs from the Digital Europe Programme

Cyberstand.eu - Nick Ferguson, Trust-IT Services

OCCTET - James Philpot, Digital SME Alliance

CURIUM - Kristian Ravic, Cyber Security

CRACoWI - Sandra Bortek, Tiko Pro

CONFIRMATE - Azeez Kamal/Krasimir Simonski, CYEN

OSCRAT - Ecaterina Donciu, Enersec Technology

SECURE - Alessandro Calabrese, Cyber4.0

11:15 - 11:45Networking break 
11:45 - 13:15Presentation of Standards by Rapporteurs

Routers, Modems, Switches - Bruno Banelli, Sartura d.d.

Smartcards - Ivan Plajh, Independent Consultant 

Browsers/Password Managers - Daniel Thompson-Yvetot, CrabNebula

Boot Managers - Christian Horchert, CrabNebula

13:15 - 14:30Networking Lunch 
14:30 - 15:15Break outs 1

Routers, Modems, Switches - Bruno Banelli (room B3 Nikola Tesla)

Smartcards - Ivan Plajh (room B4 Faust Vrančić)

Password Managers - Daniel Thompson-Yvetot (room B2 Marija Braut)

15:15-16:00Break outs 2

Firewalls - Tomislav Nemet (room B3 Nikola Tesla)

Browsers - Christian Horchert (room B4 Faust Vrančić)

Boot Managers - Daniel Thompson-Yvetot (room B2 Marija Braut)

16:00 - 16:30Networking break 
16:30 - 17:00Closing session: How SMEs can prepare for the CRA and actively participate in the drafting activities
 		Laure Pourcin - ETSI Technical Officer
George Sharkov - ETSI CYBER-EUSR Vice-Chair/SBS
Anna Maria Mandalari - University College London/Mulini
Bruno Banelli - Sartura d.d.