Secure Horizons 2026: Preparing the IoT Ecosystem for the Cyber Resilience Act

Secure Horizons 2026: Preparing the IoT Ecosystem for the Cyber Resilience Act

CyberWhiz presented at Secure Horizons 2026, discussing CRA readiness and end-to-end IoT security solutions.

We were pleased to participate in Secure Horizons 2026, a forward-looking cybersecurity event focused on the evolving regulatory and technical challenges facing the IoT ecosystem. The event brought together cybersecurity professionals, technology providers, and industry leaders to discuss what lies ahead for connected products and how organisations should prepare for upcoming regulations with a strong focus on the EU Cyber Resilience Act (CRA).

During the event, CyberWhiz delivered a comprehensive presentation examining the growing importance of CRA within the IoT world and its impact on manufacturers, software vendors, and service providers. The session addressed one of the most critical questions facing the industry today: how organisations can adapt to CRA requirements without slowing down innovation or time to market.

Presentation Highlights

Our presentation covered:

Why CRA represents a fundamental shift for IoT security and compliance

The Cyber Resilience Act introduces mandatory cybersecurity requirements for products with digital elements throughout their entire lifecycle. This represents a paradigm shift from voluntary best practices to enforceable legal obligations.

What cybersecurity expectations will look like across the full product lifecycle; before, during, and after deployment

CRA compliance requires organisations to think holistically about security - from initial design and development, through manufacturing and deployment, all the way to end-of-life support and vulnerability management.

CyberWhiz IoT Security Solutions Presentation

How companies should start preparing today to meet CRA obligations on vulnerability management, secure-by-design principles, and long-term security support

Organisations must establish robust processes for continuous vulnerability monitoring, SBOM generation, coordinated vulnerability disclosure, and timely security updates - all of which will be mandatory under CRA.

CyberWhiz’s CRA Readiness Solutions

A key part of the session focused on how CyberWhiz supports organisations on their CRA journey. We demonstrated how our solutions help companies:

  • Achieve CRA readiness across Edge, Mobile, and Cloud environments - Our holistic approach secures all three critical domains of IoT products, including the wireless communications between them
  • Implement continuous vulnerability management and SBOM practices - Automated SBOM generation, CVE mapping, and continuous vulnerability tracking across all digital elements
  • Detect and respond to cyber risks throughout the entire product lifecycle - 24/7 monitoring through CyberWhiz Defence Center with real-time threat detection and incident response
  • Align technical security controls with regulatory compliance requirements - Our Purple Team services translate CRA requirements into actionable technical implementations

A Unique Venue: IWM Duxford

The event took place at IWM Duxford, one of Britain’s finest aviation museums. The historic venue, featuring the iconic Concorde and a remarkable collection of military aircraft, provided an inspiring backdrop for forward-looking discussions about cybersecurity and technological advancement.

Concorde at IWM Duxford

The venue’s celebration of engineering excellence and innovation resonated perfectly with the event’s focus on building secure, cutting-edge IoT solutions for the future.

Historic Aircraft Collection at IWM Duxford

Industry Collaboration and Knowledge Sharing

Secure Horizons 2026 provided an excellent platform to exchange ideas with other cybersecurity leaders and technology providers, reinforcing the importance of collaboration as the industry moves toward a more regulated and security-driven future.

The event highlighted several key industry trends:

  1. Rising urgency around CRA compliance - With CRA enforcement approaching, manufacturers are accelerating their compliance efforts
  2. Shift toward security-by-design - Organisations are moving security earlier in the development lifecycle
  3. Growing complexity of IoT ecosystems - Connected products now span edge devices, mobile apps, cloud backends, and numerous third-party integrations
  4. Need for continuous security operations - Post-market vulnerability management is becoming a critical business capability

Looking Ahead

We are proud to have contributed to this important discussion and to support organisations as they prepare for the new cybersecurity era shaped by the Cyber Resilience Act.

As the December 2027 CRA enforcement deadline approaches, organisations must act now to:

  • Conduct comprehensive risk assessments across their product portfolios
  • Establish vulnerability handling processes and disclosure policies
  • Implement SBOM generation and management workflows
  • Deploy continuous monitoring and threat detection capabilities
  • Prepare technical documentation for conformity assessment

Stay tuned for further insights, events, and updates from CyberWhiz as we continue helping the IoT ecosystem build secure, compliant, and resilient products.

About CyberWhiz

CyberWhiz is an end-to-end IoT cybersecurity solutions provider, offering comprehensive security across Edge devices, Mobile applications, and Cloud services. Our Red·Purple·Blue Team Services, combined with CyberWhiz Embedded, CyberWhiz Mobile, and CyberWhiz Defence Center, enable manufacturers to achieve regulatory compliance while maintaining robust operational security.

Contact our team to discuss how we can support your CRA readiness journey.