Navigating Uncertainty for NB: Strategies for CRA Readiness (R13d)
Becoming a Notified Body (NB) under the EU Cyber Resilience Act (CRA) is far from straightforward, specially as methodologies, conformity procedures, and standards continue to evolve within an ambitious regulatory timeline. This talk shares the speakers’ organization’s journey in preparing both a NB and its evaluation laboratory to operate effectively in this uncertainty. the speakers’ll discuss how the speakers restructured the speakers’ organization, refined internal processes, and built technical competencies to anticipate CRA requirements. A key focus will be on the evolution of the speakers’ services and the introduction of the speakers’ FITCEM instantiation, analysis and guidelines on conformity assessment process such as Module H in the absence of finalized CRA standardisation. Looking ahead to 2026, when formal CRA standards may still be under development, the speakers aim to present adaptive solutions for navigating these unclear domains. The speakers invite discussion on how Notified Bodies can remain agile, credible, and effective throughout this critical transition toward full CRA implementation.