[et_pb_section fb_built=\"1\" fullwidth=\"on\" disabled_on=\"on|on|off\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_fullwidth_slider _builder_version=\"4.27.6\" max_height=\"350px\" custom_padding=\"80px||80px||true|false\" hover_transition_duration=\"2000ms\" hover_enabled=\"0\" global_colors_info=\"{}\" sticky_enabled=\"0\"][et_pb_slide _builder_version=\"4.27.6\" header_level=\"h1\" header_text_align=\"center\" header_text_color=\"#F07F1D\" header_font_size=\"56px\" body_font=\"|300|||||||\" body_font_size=\"30px\" body_line_height=\"1.4em\" background_enable_color=\"off\" background_image=\"https:\/\/www.usd.de\/wp-content\/uploads\/usd-pci-security-consulting-header-cra.jpg\" background_enable_image=\"on\" background_blend=\"overlay\" button_text_size=\"20px\" button_text_color=\"#F6F6F6\" button_border_width=\"1px\" button_border_color=\"#F07F1D\" button_font=\"Roboto|300|||||||\" button_use_icon=\"off\" button_alignment=\"center\" text_orientation=\"center\" width=\"60%\" max_width=\"1080%\" hover_enabled=\"0\" global_colors_info=\"{}\" sticky_transition=\"on\" sticky_enabled=\"0\"]<\/p>\n
[\/et_pb_slide][\/et_pb_fullwidth_slider][\/et_pb_section][et_pb_section fb_built=\"1\" disabled_on=\"off|off|on\" _builder_version=\"4.27.6\" _module_preset=\"default\" background_image=\"https:\/\/www.usd.de\/wp-content\/uploads\/usd-pci-security-consulting-header-cra.jpg\" custom_padding=\"91px||91px||true|false\" locked=\"off\" global_colors_info=\"{}\"][et_pb_row _builder_version=\"4.21.0\" _module_preset=\"default\" width=\"80%\" max_height=\"350px\" global_colors_info=\"{}\"][et_pb_column type=\"4_4\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"default\" text_font_size=\"20px\" text_line_height=\"1.4em\" header_font=\"|300|||||||\" header_font_size=\"30px\" background_layout=\"dark\" custom_margin_tablet=\"\" custom_margin_phone=\"\" custom_margin_last_edited=\"on|tablet\" custom_padding_tablet=\"\" custom_padding_phone=\"\" custom_padding_last_edited=\"on|desktop\" hover_enabled=\"0\" header_font_size_tablet=\"25px\" header_font_size_phone=\"\" header_font_size_last_edited=\"on|tablet\" global_colors_info=\"{}\" sticky_enabled=\"0\"]<\/p>\n
Secure market access. Controlled risks.<\/span><\/p>\n [\/et_pb_text][\/et_pb_column][\/et_pb_row][\/et_pb_section][et_pb_section fb_built=\"1\" _builder_version=\"4.27.6\" _module_preset=\"default\" custom_padding=\"||0px|||\" collapsed=\"off\" global_colors_info=\"{}\"][et_pb_row column_structure=\"3_5,2_5\" _builder_version=\"4.27.6\" _module_preset=\"default\" width=\"85%\" custom_padding=\"||32px|||\" global_colors_info=\"{}\"][et_pb_column type=\"3_5\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"default\" background_color=\"RGBA(0,0,0,0)\" width=\"90%\" custom_margin=\"0px|0px|0px|0px|true|true\" hover_enabled=\"0\" global_colors_info=\"{}\" sticky_enabled=\"0\"]<\/p>\n No more market access without verifiable cyber security: The Cyber Resilience Act (CRA) is changing how digital products are developed, tested and operated in the EU. Manufacturers, importers and distributors who place digital products on the market in the EU must systematically secure development, operation, vulnerability and reporting processes and consistently take security into account. [\/et_pb_text][\/et_pb_column][et_pb_column type=\"2_5\" _builder_version=\"4.27.6\" _module_preset=\"default\" background_color=\"#969696\" background_image=\"https:\/\/www.usd.de\/wp-content\/uploads\/iStock-1417956207-edit-scaled.jpg\" link_option_url=\"https:\/\/www.usd.de\/en\/7-questions-about-cyber-resilience-act-cra\/\" global_colors_info=\"{}\"][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"51ae1141-d3aa-4d8e-88be-0448f8284f54\" background_color=\"RGBA(0,0,0,0)\" custom_margin=\"27px||-1px||false|false\" custom_padding=\"6px|30px|0px|30px|false|true\" global_colors_info=\"{}\"]<\/p>\n [\/et_pb_text][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"51ae1141-d3aa-4d8e-88be-0448f8284f54\" background_color=\"RGBA(0,0,0,0)\" global_colors_info=\"{}\"]<\/p>\n We answer the most important questions.<\/p>\n [\/et_pb_text][et_pb_button button_url=\"https:\/\/www.usd.de\/en\/7-questions-about-cyber-resilience-act-cra\/\" url_new_window=\"on\" button_text=\"Read the Blog Post\" button_alignment=\"center\" _builder_version=\"4.27.6\" _module_preset=\"7d5eca5e-7ccf-4359-a023-e8404a31180a\" custom_margin=\"||26px||false|false\" global_colors_info=\"{}\"][\/et_pb_button][\/et_pb_column][\/et_pb_row][\/et_pb_section][et_pb_section fb_built=\"1\" disabled_on=\"off|off|off\" _builder_version=\"4.27.6\" _module_preset=\"default\" background_color=\"#F6F6F6\" custom_padding=\"0px||50px|||\" collapsed=\"on\" global_colors_info=\"{}\"][et_pb_row _builder_version=\"4.21.0\" _module_preset=\"default\" width=\"85%\" custom_padding=\"50px|||||\" collapsed=\"off\" global_colors_info=\"{}\"][et_pb_column type=\"4_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"default\" global_colors_info=\"{}\"]<\/p>\n [\/et_pb_text][\/et_pb_column][\/et_pb_row][et_pb_row _builder_version=\"4.27.6\" _module_preset=\"default\" width=\"85%\" custom_padding=\"0px|||||\" collapsed=\"on\" global_colors_info=\"{}\"][et_pb_column type=\"4_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"default\" hover_enabled=\"0\" global_colors_info=\"{}\" sticky_enabled=\"0\"]<\/p>\n The CRA forces companies to make cyber security verifiable, not only selectively, but along with the entire product life cycle. These include secure development processes, functioning vulnerability handling, clear responsibilities and reporting processes to authorities. Compliance will be a prerequisite for placing many digital products on the EU market in the future.<\/span><\/p>\n Not only products of the classic manufacturers of hardware and software are affected, but also many companies that procure, operate or sell products under their own name. The CRA thus has an impact far beyond industry and is more than a regulatory obligation. Implemented correctly, it strengthens security, quality and trust in the products. We not only help you meet CRA requirements, but also integrate them effectively into your existing security, development, and governance frameworks. [\/et_pb_text][et_pb_image src=\"https:\/\/www.usd.de\/wp-content\/uploads\/Cyber-Resilience-Act-CRA-Timeline-usd-ag.svg\" title_text=\"Cyber-Resilience-Act-CRA-Timeline-usd-ag\" url=\"https:\/\/www.usd.de\/wp-content\/uploads\/Timeline-CRA-EN.jpg\" align=\"center\" _builder_version=\"4.27.6\" _module_preset=\"default\" width=\"75%\" global_colors_info=\"{}\"][\/et_pb_image][\/et_pb_column][\/et_pb_row][\/et_pb_section][et_pb_section fb_built=\"1\" disabled_on=\"on|on|off\" _builder_version=\"4.27.6\" _module_preset=\"default\" background_color=\"#FFFFFF\" width=\"100%\" custom_padding=\"0px||0px||false|false\" collapsed=\"off\" global_colors_info=\"{}\"][et_pb_row _builder_version=\"4.21.0\" _module_preset=\"default\" custom_padding=\"50px||0px|||\" global_colors_info=\"{}\"][et_pb_column type=\"4_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"default\" global_colors_info=\"{}\"]<\/p>\n [\/et_pb_text][\/et_pb_column][\/et_pb_row][et_pb_row _builder_version=\"4.21.0\" _module_preset=\"default\" width=\"85%\" custom_padding=\"||0px|||\" global_colors_info=\"{}\"][et_pb_column type=\"4_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"default\" hover_enabled=\"0\" global_colors_info=\"{}\" sticky_enabled=\"0\"]<\/p>\n Technical depth meets regulatory understanding: You benefit from an interdisciplinary team that is well-versed in both regulatory requirements and technical and organizational implementation. Whether it\u2019s an initial status analysis, targeted improvements to individual processes, or comprehensive CRA compliance support, we\u2019re here to support you every step of the way.<\/strong><\/p>\n [\/et_pb_text][\/et_pb_column][\/et_pb_row][et_pb_row disabled_on=\"on|on|off\" _builder_version=\"4.27.4\" _module_preset=\"default\" width=\"85%\" custom_margin=\"2%||1%||false|false\" custom_padding=\"0px||0px||false|false\" global_colors_info=\"{}\"][et_pb_column type=\"4_4\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_divider color=\"#d8d8d8\" _builder_version=\"4.27.4\" _module_preset=\"default\" custom_margin=\"0px||0px||false|false\" global_colors_info=\"{}\"][\/et_pb_divider][\/et_pb_column][\/et_pb_row][et_pb_row column_structure=\"1_4,3_4\" _builder_version=\"4.27.6\" _module_preset=\"default\" width=\"85%\" custom_padding=\"||0px|||\" global_colors_info=\"{}\"][et_pb_column type=\"1_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_image src=\"https:\/\/www.usd.de\/wp-content\/uploads\/cra-betroffenheits-reifegradanalyse.svg\" title_text=\"cra-betroffenheits-reifegradanalyse\" _builder_version=\"4.27.6\" _module_preset=\"default\" width=\"55%\" module_alignment=\"center\" global_colors_info=\"{}\"][\/et_pb_image][\/et_pb_column][et_pb_column type=\"3_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"default\" global_colors_info=\"{}\"]<\/p>\n As part of a structured readiness check, we support you in assessing the extent to which your products are affected by the Cyber Resilience Act and the current maturity level of your organization, processes and technical measures. You will receive a transparent assessment of your initial situation as well as a well-founded basis for decision-making for the next steps.<\/span><\/p>\n <\/strong><\/p>\n [\/et_pb_text][\/et_pb_column][\/et_pb_row][et_pb_row disabled_on=\"on|on|off\" _builder_version=\"4.27.4\" _module_preset=\"default\" width=\"85%\" custom_margin=\"2%||1%||false|false\" custom_padding=\"0px||0px||false|false\" global_colors_info=\"{}\"][et_pb_column type=\"4_4\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_divider color=\"#d8d8d8\" _builder_version=\"4.27.4\" _module_preset=\"default\" custom_margin=\"0px||0px||false|false\" global_colors_info=\"{}\"][\/et_pb_divider][\/et_pb_column][\/et_pb_row][et_pb_row column_structure=\"3_4,1_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" width=\"85%\" custom_padding=\"||0px|||\" global_colors_info=\"{}\"][et_pb_column type=\"3_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"default\" hover_enabled=\"0\" global_colors_info=\"{}\" sticky_enabled=\"0\"]<\/p>\n We systematically compare your existing processes and measures with the CRA requirements and make specific gaps visible. In doing so, we examine not only individual controls, but also the broader context of development, operations, and governance. Based on this, we develop a prioritized roadmap tailored to your specific risk profile and organizational structure. The Cyber Resilience Act requires security to be embedded throughout the product lifecycle. This is exactly where we come in. Together, we develop a CRA-compliant SDLC that fits into your existing processes. Starting with secure architecture, secure coding and tests to stable release and maintenance processes. We anchor security requirements in your CI\/CD pipelines, support the introduction and maintenance of SBOMs and ensure continuous, traceable audits.<\/strong><\/p>\n [\/et_pb_text][\/et_pb_column][\/et_pb_row][et_pb_row disabled_on=\"on|on|off\" _builder_version=\"4.27.4\" _module_preset=\"default\" width=\"85%\" custom_margin=\"2%||1%||false|false\" custom_padding=\"0px||0px||false|false\" global_colors_info=\"{}\"][et_pb_column type=\"4_4\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_divider color=\"#d8d8d8\" _builder_version=\"4.27.4\" _module_preset=\"default\" custom_margin=\"0px||0px||false|false\" global_colors_info=\"{}\"][\/et_pb_divider][\/et_pb_column][\/et_pb_row][et_pb_row column_structure=\"3_4,1_4\" _builder_version=\"4.27.6\" _module_preset=\"default\" width=\"85%\" custom_padding=\"||0px|||\" global_colors_info=\"{}\"][et_pb_column type=\"3_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"default\" global_colors_info=\"{}\"]<\/p>\n We support you in establishing structured vulnerability handling: with clear responsibilities, defined assessment and comprehensible documentation throughout the entire life cycle. Together, we design reporting processes in accordance with Art. 14 CRA in such a way that you can reliably classify incidents and communicate them to authorities and users in a timely manner.<\/strong><\/p>\n [\/et_pb_text][\/et_pb_column][et_pb_column type=\"1_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_image src=\"https:\/\/www.usd.de\/wp-content\/uploads\/cra-vulnerability-handling-meldeprozes.svg\" title_text=\"cra-vulnerability-handling-meldeprozes\" align=\"center\" _builder_version=\"4.27.6\" _module_preset=\"default\" width=\"55%\" global_colors_info=\"{}\"][\/et_pb_image][\/et_pb_column][\/et_pb_row][et_pb_row disabled_on=\"on|on|off\" _builder_version=\"4.27.4\" _module_preset=\"default\" width=\"85%\" custom_margin=\"2%||1%||false|false\" custom_padding=\"0px||0px||false|false\" global_colors_info=\"{}\"][et_pb_column type=\"4_4\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_divider color=\"#d8d8d8\" _builder_version=\"4.27.4\" _module_preset=\"default\" custom_margin=\"0px||0px||false|false\" global_colors_info=\"{}\"][\/et_pb_divider][\/et_pb_column][\/et_pb_row][et_pb_row column_structure=\"1_4,3_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" width=\"85%\" custom_padding=\"||0px|||\" global_colors_info=\"{}\"][et_pb_column type=\"1_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_image src=\"https:\/\/www.usd.de\/wp-content\/uploads\/cra-threat-modeling-prozesse.svg\" title_text=\"cra-threat-modeling-prozesse\" align=\"center\" _builder_version=\"4.27.6\" _module_preset=\"default\" width=\"55%\" global_colors_info=\"{}\"][\/et_pb_image][\/et_pb_column][et_pb_column type=\"3_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"default\" global_colors_info=\"{}\"]<\/p>\n
\nThe EU regulation<\/a> presents companies with new strategic, organisational and technical challenges. At the same time, however, it offers the opportunity to establish product safety as a lasting hallmark of quality and trust.<\/p>\n7 Questions about the Cyber Resilience Act (CRA) <\/span><\/h2>\n
What Is the Cyber Resilience Act and How Does It Affect Your Business?<\/h2>\n
<\/span><\/p>\nHere\u2019s How usd AG Assists You with the Cyber Resilience Act<\/h2>\n
CRA Impact and Readiness Analysis (\u201cCRA Readiness Check\u201d)<\/h3>\n
CRA GAP Analysis & Roadmap<\/h3>\n
\n<\/strong>[\/et_pb_text][\/et_pb_column][et_pb_column type=\"1_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_image src=\"https:\/\/www.usd.de\/wp-content\/uploads\/cra-gap-analyse-roadmap.svg\" title_text=\"cra-gap-analyse-roadmap\" align=\"center\" _builder_version=\"4.27.6\" _module_preset=\"default\" width=\"55%\" global_colors_info=\"{}\"][\/et_pb_image][\/et_pb_column][\/et_pb_row][et_pb_row disabled_on=\"on|on|off\" _builder_version=\"4.27.4\" _module_preset=\"default\" width=\"85%\" custom_margin=\"2%||1%||false|false\" custom_padding=\"0px||0px||false|false\" global_colors_info=\"{}\"][et_pb_column type=\"4_4\" _builder_version=\"4.16\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_divider color=\"#d8d8d8\" _builder_version=\"4.27.4\" _module_preset=\"default\" custom_margin=\"0px||0px||false|false\" global_colors_info=\"{}\"][\/et_pb_divider][\/et_pb_column][\/et_pb_row][et_pb_row column_structure=\"1_4,3_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" width=\"85%\" custom_padding=\"||0px|||\" global_colors_info=\"{}\"][et_pb_column type=\"1_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_image src=\"https:\/\/www.usd.de\/wp-content\/uploads\/cra-secure-development-life-cycle.svg\" title_text=\"cra-secure-development-life-cycle\" align=\"center\" _builder_version=\"4.27.6\" _module_preset=\"default\" width=\"55%\" global_colors_info=\"{}\"][\/et_pb_image][\/et_pb_column][et_pb_column type=\"3_4\" _builder_version=\"4.21.0\" _module_preset=\"default\" global_colors_info=\"{}\"][et_pb_text _builder_version=\"4.27.6\" _module_preset=\"default\" global_colors_info=\"{}\"]<\/p>\nCRA-compliant Secure Development Life Cycle (SDLC)<\/h3>\n
Vulnerability Handling & Reporting Process According to Art. 14 CRA<\/h3>\n
Threat Modeling Processes<\/h3>\n