For industrial automation and control systems, IEC 62443 has been the gold standard for developing secure products. However, new regulations for cybersecurity are coming in the form of the European Cybersecurity Resilience Act (CRA). Meeting IEC 62443 requirements does not guarantee compliance with CRA, but it get’s you most of the way there. This talk will focus on what you need to do to build on IEC 62443 compliance to achieve CRA compliance. In addition, an approach will be discussed for products that have not yet achieved IEC 62443 compliance.
exida Webinars
From IEC 62443 to CRA: How to leverage IEC 62443 certification for CRA Compliance
22 July 2026
Session 1: 10:00 - 11:00 AM EDT Session 2: 4:00 - 5:00 PM EDT
About the Presenter:
Michael Medoff , CFSE, CISA
Michael is a Functional Safety & Security expert responsible for incorporating industry best practices for the safety and security development lifecycles into a common process. He is certified to perform Achilles certification tests on industrial controllers. He consults with clients on improving their product development process to become compliant with IEC 62443, IEC 61508 and ISA Secure SDLA (Security Development Lifecycle Assurance). Michael holds a Masters in Business Administration from Penn State University, a M. S. in Computer Engineering from Villanova University and a B. S. in Electrical Engineering from Cornell University.