Skip to main content
Leaving UL Solutions website
Within UL Solutions we provide a broad portfolio of offerings to all the medical device industries. This includes certification, Approved/Notified Body and consultancy services. In order to protect and prevent any conflict of interest, perception of conflict of interest and protection of both our brand and our customers brand, we have processes in place to identify and manage any potential conflicts of interest and maintain impartiality. UL Solutions is unable to provide consultancy services to EU MDD, MDR or IVDD Notified Body, UKCA MD Approved Body or MDSAP Customers.
  • On-demand Webinar

Achieving Compliance: The CRA’s Vulnerability‑Handling Rules

Unpack the Cyber Resilience Act’s (CRA’s) new 2026 vulnerability‑handling requirements and discover practical cybersecurity measures that help your organization stay compliant and resilient.

A smiling person using a secure laptop

 

This on-demand webinar offers a clear, practical walkthrough of the Cyber Resilience Act’s (CRA’s) vulnerability‑handling requirements that are effective in September 2026. 

Learning objectives:

  • Understand the core vulnerability‑handling obligations introduced by the CRA, including timelines, reporting expectations, and responsibilities for manufacturers and software providers.
  • Identify the organizational and technical capabilities needed to achieve compliance, such as coordinated vulnerability disclosure processes, secure update mechanisms, and documentation practices.
  • Evaluate practical steps to prepare for the September 2026 mandate, including training, gap assessments, process improvements, and the role of cybersecurity services in supporting long‑term compliance readiness.

 

Watch now - Achieving Compliance: The CRA’s Vulnerability‑Handling Rules

Our experts explain what the regulation demands, how it will impact manufacturers and software providers, and the steps organizations should take now to prepare. Attendees will gain insight into compliance expectations, common pitfalls and the cybersecurity capabilities that can streamline adherence while strengthening overall product security.

Webinar date: Mar. 26, 2026

 

Speakers

 

José M Capella is a security evaluation expert with over five years of experience in cybersecurity product testing. He has performed evaluations for IoT consumer and industrial devices, using standards such as ETSI EN 303 645, ISA/IEC 62443, EN 18031 and others. Prior to joining UL Solutions in 2024, he worked as a testing engineer and advisor. His background includes technical skills and a strong knowledge of cybersecurity regulations. 

José Manuel Capella Rodriguez
Senior cybersecurity advisor

Jose M. Capella head shot

 

 

Puneet Makkar head shot

Puneet Makkar is a senior consultant and automotive cybersecurity engineer and trainer with over ten years of experience working with customers on the topics of ASPICE, ASPICE for cybersecurity and ISO 21434 Implementations. His expertise is in process management, ASPICE, automotive cybersecurity (ISO 21434, R155, R156 and CRA), SOTIF, functional safety and product development for mechanical and hardware.

Puneet Makkar,
Senior cybersecurity consultant

Download the presentation
CRA

CRA Vulnerability handling presentation

1.3 MB

Attend an upcoming webinar

Ready to elevate your industry IQ with insights and news from experts? Register for one of our upcoming events.

View upcoming webinars

To access this on-demand webinar, please fill out the form below:

Please wait…