CRA - Making the EU Market Resilient

Inaugural Conference on the Cyber Resilience Act

The European Union Agency for Cybersecurity (ENISA), in partnership with the Romanian National Cyber Security Directorate (DNSC) and the European Cybersecurity Competence Centre and Network (ECCC), presents the first edition of the CRA – Making the EU Market Resilient conference on October 8 in Bucharest. This inaugural event addresses the Cyber Resilience Act, which entered into force on December 10, 2024, introducing cybersecurity requirements for products with digital elements as a precondition for accessing the EU market.

Conference Focus

This is the first European Union event bringing together relevant stakeholders across the entire spectrum of resilience for products with digital elements available on the EU Single Market. The conference examines how the CRA requires manufacturers to apply cybersecurity requirements throughout the entire product lifecycle, with the aim of protecting EU citizens and businesses, including SMEs, in the secure EU Digital Single Market.

Conference Objectives

The event addresses critical areas for CRA implementation and market resilience:

• Market Resilience: Fostering cybersecurity market resilience across the EU Single Market

• Business Awareness: Raising awareness of the European business community, including SMEs, in their journey towards CRA compliance

• Expert Capacity Building: Building capacities of the cybersecurity expert community regarding the process of placing products on the Single Market

• Stakeholder Collaboration: Bringing together product security and market monitoring and surveillance communities to discuss cybersecurity resilience market aspects

What to Expect

The conference provides a platform for manufacturers, market surveillance authorities, cybersecurity experts, and business representatives to examine practical approaches to CRA compliance and implementation. Participants will gain insights into navigating the new regulatory framework while ensuring product security throughout development and deployment lifecycles.

The ENISA CRA event will be held on the margins of the 2025 edition of the Bucharest Cybersecurity Conference (BCC2025), organized by DNSC, which takes place October 6–7. Separate registration is required for BCC2025.

Event date

October 8, 2025

Event schedule

October 8, 2025, 9:00 am - 5:30 pm CEST

Photo gallery

No items found.

Related events

Cyber EUnnovate 2025

ENISA presents Cyber EUnnovate 2025, a high-level conference exploring the intersection of innovation, AI, and cybersecurity across the EU. The event brings together innovators, cybersecurity experts, policymakers, and industry leaders to accelerate advanced cybersecurity solution development while positioning security as an enabler of digital resilience.

Public Hearing on the Revision of the Guidelines on Product Oversight and Governance Arrangements for Retail Banking Products to Consider Products with ESG Features and Greenwashing Risks

EBA holds virtual hearing September 11 on revised guidelines to prevent greenwashing in ESG banking products.

The State of Third-Party Risk Management in 2025

This webinar features Michael Rasmussen and Henry Umney exploring pressures and opportunities facing third-party risk management. Participants will learn about staffing challenges, regulatory impacts, and strategies for building resilient TPRM frameworks.