Panel Discussion: Cyber Resilience Act & Cybersecurity Act

Oct 09, 2024 Online
Building a Resilient Future: Exploring the Impact of the Cyber Resilience Act and Cybersecurity Act
Explore how CRA & CSA regulations shape the future of cybersecurity and identify the challenges and opportunities these acts present for businesses.
Save your Spot
This panel discussion will focus on the implications of two regulatory frameworks: the Cyber Resilience Act (CRA) and the Cybersecurity Act (CSA). The Cyber Resilience Act aims to enhance the resilience of digital products and services, ensuring they are designed and maintained with cybersecurity in mind. Meanwhile, the Cybersecurity Act focuses on establishing a framework for cybersecurity certification, enhancing trust in the security of products and services across the European Union.
Our expert panelists will explore how these regulations shape the future of cybersecurity, the challenges and opportunities these acts present for businesses, the expected effects on innovation and competition, and how organizations can strategically navigate compliance while maintaining operational efficiency.
Date: Wednesday, 09 October 2024
Time: 10:00am – 11:00am (CET)
Location: Online

Moderator

José Emilio Rico
Cybersecurity Strategy Leader in DEKRA
Master in computer science, CISA, he has worked in areas related to the information system development, safety software certification in the scope of aerospace technologies, IT system and product security evaluation under ITSEC and CC standards and FIPS 140-2 conformance testing of cryptographic modules. With more than 20 years of experience in the field, he started working in the security evaluation field in a Spanish government laboratory, and from 2007 to 2017 he was the technical manager of Epoche and Espri, an IT evaluation facility that provides evaluation services mostly under the Common Criteria, FIPS 140-2 and ISO/IEC 19790 standards. In October 2017, Epoche and Espri was acquired by DEKRA Testing and Certification, being now Jose Emilio, the Cybersecurity Global Leader for Cybersecurity Strategy in DEKRA.

Speakers

Roland Atoui
Managing Director in Red Alert Labs
Roland Atoui, Managing Director & Founder, a Cybersecurity Certification expert with more than 15 years of recognized achievements in both research and industry. From smart cards up to cloud services. Roland is s new technology enthusiast with a current mission to bring trust to the IoT. He is a recognized certification expert and represents French delegation in ESO and ISO activities. He is behind the development and/or a main contributor to several ICT/IoT certification schemes and standards such as EUCC, FIDO, FDO, Eurosmart IoT, IoTSF, ioXt Alliance, EN 303645 and EN18031.
Boutheina Chetali
Security & Certification Sr. Expert in Huawei
Dr Chetali is Senior Expert in Security and Certification at Huawei Technologies with over 22 years of professional experience in the field of security and certification, including Common Criteria. She is leading Trustworthiness certification team in charge of the EU cybersecurity regulation, standardization and certifications schemes. Dr Chetali has been working in the area of security certification since 2000, being responsible for security assurance technologies and CC certification of embedded devices and solutions, including end-to-end security and security by design. She led experts' team that achieved the world-first EAL7 Common Criteria certification, and she also contributed in standardization working groups to the development of protection profiles (e.g. PP JC, PP USIM, PP TEE).
Miguel Bañón
Independent Cybersecurity Consultant
In 2006, Miguel founded Epoche & Espri, a successful Common Criteria and FIPS 140-2 security evaluation and testing laboratory. In October 2017 Epoche & Espri became part of DEKRA, one of the top 4 players in the testing, inspection, and certification industry worldwide. Miguel is the current Convenor of ISO/IEC JTC 1/SC 27/WG 3, CEN/CLC JTC 13/WG 3, CEN/CLC JTC 13/WG 10 and member of the Management Board of the CCUF.
José Manuel Pulido
Lead Cybersecurity Consultant in Jtsec
José Pulido is a cybersecurity professional with more than 7 years of experience in the sector and over 14 years in the IT industry. He began his career as a developer of cybersecurity solutions and later transitioned to the cybersecurity industry, joining jtsec Beyond IT Security in 2015, where he has worked since. He was the main developer of CCGen software, a framework that helps create the documentary evidence required for Common Criteria evaluations. At jtsec, he has focused his career primarily on cybersecurity certification standards, especially Common Criteria and LINCE, where he has developed a path leading to his current role as Consultancy Manager, overseeing a large team of cybersecurity professionals.
Carlos Serratos
IoT Certification Expert in NXP
Carlos Serratos is a specialist in IoT security and regulatory compliance. In his role as IoT Certification Expert at NXP, he engages with policymakers, regulators, and industry across verticals and regions, addressing trust enablement issues for compliance, risk management, and accountability purposes. He’s a matter expert in security regulatory compliance, development of security certification schemes and standards, and their applicability in IoT markets. He has been an active contributor to different groups and subgroups in the Connectivity Standards Alliance, GSMA, GlobalPlatform, Eurosmart, CTA, GSA, ESIA and ENISA, among others.