The new non-profit organization CRAIG supports companies in the democratization of cybersecurity regulations. At the itemis PODIUM in Dortmund, the founders presented their mission for a strong European cyber resilience.
The regulatory requirements of the EU Cyber Resilience Act (CRA) pose massive challenges for the European industry. The non-profit organization CRAIG was founded to master the transition from complex legal texts to practical technical implementation. On March 18, Janine Funke, Tim Scherer, Michael Happ, Hauke Petersen and Dirk Leopold presented the initiative at itemis AG's headquarters in Dortmund.
CRAIG has set itself the task of promoting and democratizing the implementation of the CRA and related cybersecurity regulations. The aim is to provide organizations with limited resources - such as small and medium-sized enterprises (SMEs) - with access to "security by design", secure development practices and sound risk assessments.
"We close the gap between the complex legal requirements and their technical implementation," said the founding team during the itemis PODIUM. In this way, the CRAIG community is helping to strengthen the cyber resilience of digital products in Europe.
The organization empowers companies across Europe through practical guidance and community support. CRAIG relies on three central pillars: a central platform (information hub), which bundles all relevant information for the entire community, and decentralized working groups, which focus on individual topics. There are already two topics that the working groups are tackling. "One will deal with the reporting obligations and their implementation and another will clarify the question "Am I affected?" and develop an applicability check," reveals co-founder Michael Happ. Anyone interested in these open working groups simply register at www.craig.eu.com and express their interest in the respective group. CRAIG co-founder Hauke Petersen emphasizes the importance of these working groups: "Professional exchange is particularly important to me, that's what counts. That's why the working groups are an essential part of our community."
The personal meetings in local chapters are particularly important to the founders. These local offshoots enable personal networking and specialist regulars' tables. "I find it very helpful to meet up in person, discuss IT security, order pizza together, maintain contacts and work on something," explains co-founder and Chairman of CRAIG Dirk Leopold. He has already set about organizing one of the first local chapters for Böblingen/Stuttgart. Co-founder Tim Scherer is also already looking forward to a lively exchange with like-minded people.
New members are also welcome to set up their own local chapters if required.
Through its community approach, CRAIG ensures that cyber security does not remain a privilege of large corporations, but becomes the standard for the entire European economy. Interested companies and experts are invited to become part of the movement and play an active role in shaping digital security in Europe.
Co-founder Janine Funke emphasizes how useful discussions with other stakeholders are: "There are already well-developed standards for cybersecurity regulation that can be reconciled with the CRA. I think it is extremely effective to discuss with other companies which standards have already proven to be very practicable for what."
Anyone can join the community. There is the opportunity to participate as an individual member, partner or sponsor. You can simply register or subscribe to a newsletter on the organization's website.
A LinkedIN group has also been set up for a quick exchange of information. Similar to other LinkedIN groups, members can easily exchange information here and are also informed about new findings relating to the cybersecurity of networked products.
www.craig.eu.com/de
LinkedIN group