Cyber Resilience Act (CRA) – what software vendors should do now
What CRA expects, where it lands in the lifecycle, and how to implement it without unnecessary bureaucracy.
Insights and notes
Clear, practical writing: what requirements mean in real development and how to keep systems manageable.
IEC 62443 – secure development lifecycle in industrial environments
How IEC 62443 links to architecture, integrations and day-to-day development practices.
Architecture also decides security
Why security is largely determined by architecture and lifecycle control — and how clarity reduces risk.