Open Regulatory Compliance

💡 Are you ready for the EU’s Cyber Resilience Act (CRA)? With vulnerability reporting requirements starting in September 2026, organisations have less than a year to prepare. On 30 September, the Open Regulatory Compliance (ORC) Working Group will: 🔹 Walk you through the CRA compliance timeline 🔹 Recap recent deliverables and progress 🔹 Show you how to contribute and collaborate 👉 Don’t wait—secure your spot today: https://hubs.la/Q03Jynmj0 #ORCWG #CRA #CyberResilience #OpenSource #Compliance

🔒 Unlocking Software Supply Chain Security Our recent #CRAMondays session spotlighted key updates from Ecma TC54 and OWASP, featuring Samina Husain, Steve Spring, and Philippe Ombredanne. The panel shared how Ecma’s work is driving transparency, supply chain security, and readiness for the EU Cyber Resilience Act (CRA). 💡 “Transparency isn’t just about meeting regulations, it’s about building trust and resilience.” ▶️ Watch the full discussion and explore how TC54 is shaping the future of software compliance: https://hubs.ly/Q03KvNV80 #ORCWG #CRA #CyberResilience

The Open Regulatory Compliance (ORC) Working Group has officially welcomed its 20th Foundation Member! This growing community of industry leaders and open source foundations, including Apache Software Foundation, OWASP, and the Python Foundation, is working together to keep regulatory compliance practical, trusted, and open. 👏 A huge thank-you to all our members for driving collaboration and shaping the future of open compliance. 💡 Interested in joining? Help us build the next chapter of open regulatory compliance: https://hubs.ly/Q03Kwwj_0 #ORCWG #opensource #compliance #EclipseFdn

🎤 It’s #CRA time at The Things Conference! Juan Rico, Senior Program Manager, Open Regulatory Compliance at the Eclipse Foundation, is on stage in Amsterdam delivering the keynote “Will the CRA Break Open Source in IoT, or Make It Stronger?” An important discussion on how the Cyber Resilience Act could shape the future of open source and IoT. #EclipseFdn #opensource #IoT #CyberResilienceAct

Wondering what ORC’s Cyber Resilience SIG is working on? Our senior program manager Juan Rico explains how you can stay up to date with the deliverables plan, and how you can help contribute in this video: https://hubs.la/Q03J7jqP0 #CRA #ORCWG

Exciting news! We’re hosting another session to help open source stakeholders understand and prepare for the Cyber Resilience Act (CRA). Juan Rico, Program Manager of ORC, will share updates on the working group’s recent progress and explain how to join the efforts. This webinar will focus on the deliverables and milestones developed by the working group and how these resources can help you prepare for the CRA. 📆 Tuesday, 30 September 🕐 4pm CEST / 10am ET 💻 Online 🔗https://hubs.la/Q03Kwx4l0 #ORCWG #CRA #CyberResilience

🎤 Angelo D'Amato is presenting on Generic Security Requirements and the relationships among the different PTs within CEN/CENELEC, preparing the audience for the core session of the Cyber Resilience Act and Horizontal Standards workshop organised by UNE - Asociación Española de Normalización in Madrid. #standards #CRA #CyberResilienceAct

📢 Upcoming Roundtable: Solving the Standardisation Dilemma 📅 When: 22 October 2025, 16:30 – 18:30, followed by networking drinks (co-located with the Eclipse Foundation’s Code & Compliance conference). 📍 Where: Maison de la Poste, Rue Picard 7, Brussels Europe’s digital policy agenda has expanded rapidly, with legislation such as the Cyber Resilience Act and the AI Act creating new demands for harmonised standards. This raises a central question: How can the European Standardisation System move fast enough to meet policy and market needs, while ensuring inclusive processes that reflect diverse expertise? The roundtable will explore how openness, as practised in collaborative innovation models like open source development, can offer a way forward—helping the ESS remain both agile and fit for purpose in a software-driven economy. Speakers include: Problem Statement Presentation 🔹Sachiko Muto, Chair, OpenForum Europe Solutions Panel 🔹Andreea Gulacsi, Director of Policy and External Affairs, CEN and CENELEC 🔹Mike Milinkovich, Executive Director, Eclipse Foundation 🔹Guillaume Roty, Head of Unit GROW H.3, European Commission 🔹Jochen Friedrich, Technical Relations Executive, IBM We look forward to a timely discussion under Chatham House Rule on how openness can strengthen Europe’s standardisation framework, and by extension, its global competitiveness and digital sovereignty. Register now: https://lnkd.in/g-yiwJ2y   Register for Eclipse Foundation’s Code & Compliance conference: https://lnkd.in/etV6yCJz

To support the Cyber Resilience Act (#CRA) implementation, the European Commission has issued a standardisation request to the European Standardization Organizations. Today, we're attending the Cyber Resilience Act and Horizontal Standards Workshop at UNE - Asociación Española de Normalización in Madrid, to gain insights into how standards can effectively mitigate risks, enhance the cybersecurity posture, and ensure that products and services are aligned with the legal expectations set forth by the CRA. Javier Garcia Diaz, General Director at UNE, kicked off today's workshop. Stay updated! #ORCWG #CyberResilience #standards

The EU’s Cyber Resilience Act (#CRA) introduces sweeping security requirements, but without careful attention, it could place burdens on #opensource maintainers. That’s why the ORC Working Group is stepping up: ✔️ Contributing to EU cybersecurity standards ✔️ Ensuring OSS realities are represented ✔️ Advocating for sustainable, secure innovation Discover how ORC is making a difference in our August newsletter: https://hubs.la/Q03GD7z-0 #ORCWG #cybersecurity #CyberResilience