News & Events.

Catch exida at CRA-Conf & CySecMed 2025 in Munich: CRA Compliance and Medical Device Cybersecurity

  October 03, 2025

---

exida experts are headed to Munich, Germany for a week of presentations at two key conferences, CRA-Conf 2025 and CySecMed 2025. Don't miss the chance to learn from our specialists on October 14-15!

Here's a look at what we'll be presenting:

---

CySecMed 2025

Title: From Risk to Reality: Strengthening Medical Devices with Threat Modeling and Vulnerability Analysis Presenter: Tim Jones

The increasing connectivity of medical devices presents new challenges for manufacturers and operators, as security gaps can compromise data and impact patient safety. In this presentation, we'll demonstrate how to effectively combine threat modeling and vulnerability analysis to systematically identify, assess, and mitigate risks. Using a practical example from the medical technology sector, we’ll show you how to model threats early in the development process and link them to real-world vulnerabilities. Attendees will receive concrete recommendations for improving their security processes and learn how to meet regulatory requirements like IEC 81001-5-1, ISO 14971, and MDR/FDA through integrated security analysis.

---

CRA-Conf 2025

Title: Efficiently designing CRA-compliant documentation: IEC 62443 as a guideline for products with IIoT functionality Presenters: Stephan Aschenbrenner and Armin Schulze

The Cyber Resilience Act (CRA) requires manufacturers of connected products to provide comprehensive evidence of cybersecurity. This can be a significant challenge, especially for those new to cybersecurity. We'll show you how the established industry standards IEC 62443-4-1 (Secure Development Lifecycle) and IEC 62443-4-2 (Product Cybersecurity) can serve as a practical guide. By using these standards, you can structure your documentation for security requirements, measures, and verifications, making the path to CRA compliance more efficient. As an ANAB-accredited notified body for the IEC 62443 series and a notified body for the EU Machinery Directive, exida will bring the perspective of a potential CRA notified body to the discussion.

---

Interested in learning more about how exida can help your organization with cybersecurity and compliance? Connect with our presenters at the conferences!

#CRAConf2025 #CySecMed2025 #Cybersecurity #MedicalDevices #CyberResilienceAct #IEC62443 #exida

 

More News

• October 13, 2025
  Three Pillars of Process Safety: Catch exida’s Experts at Hazards 35 in Birmingham
• October 08, 2025
  exida Automotive Symposium 2025: Where the Future of Automotive Safety and AI Meets the Bavarian Alps
• October 03, 2025
  Catch exida at CRA-Conf & CySecMed 2025 in Munich: CRA Compliance and Medical Device Cybersecurity
• September 10, 2025
  exida Expert to Keynote at European Space Agency Conference
• September 04, 2025
  exida Appoints Richard (Richie) Butler as Country Manager for UK and Ireland
• June 24, 2025
  exida Releases Updated Templates based on IEC 62443 for End Users
• May 12, 2025
  Codethink Announces World’s First Baseline Safety Assessment for a Linux-Based OS to SIL 3 / ASIL D