Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore how European SMEs can navigate the mandatory cybersecurity requirements of the European Cyber Resilience Act (CRA) through automated compliance solutions in this 17-minute conference talk. Learn about the regulatory landscape affecting approximately 90% of software products categorized as "default" products, where manufacturers can self-assess their compliance. Discover practical insights from the EU-funded OCCTET project and the Eclipse Open Regulatory Compliance Working Group's standardization efforts. Follow a comprehensive compliance journey that maps pre- and post-market obligations for SMEs, focusing on the CRA-mandated cybersecurity risk assessment process that enables proper scoping of security activities. Examine how the OSS Review Toolkit (ORT) and Eclipse-hosted ORT-Server can automate critical compliance tasks including software asset identification, management oversight, work prioritization, Software Component Analysis (SCA), source code scanning, vulnerability analysis, rule evaluation, SBOM generation, and audit trail documentation. Understand the current gaps between available tooling and regulatory requirements, and gain clarity on which processes can be automated versus those requiring manual intervention to ensure cyber resilience compliance.
![CNCF [Cloud Native Computing Foundation]](https://www.classcentral.com/cdn-cgi/image/height=40,format=auto,quality=85/images/logos/institutions/cncf-cloud-native-computing-foundation-hz.png){kind=small}
