
‘You’re not ready for the CRA’ will take place at the premises of PA Consulting, near Victoria Station in London, on Wednesday 15th July 2026.
This in-person event is free to all staff of IoT Security Foundation member organisations and Professional members. Non-IoTSF members can attend for only £30 (which includes catering throughout the day).
REGISTRATION FOR THIS EVENT IS NOW CLOSED.
Agenda
The agenda, whilst remaining subject to change, has now been agreed.
09:30 – Registration
10:00 – Keynotes: HMG CyberSec representative / Joe Lomako (TUV SUD): CRA competitive impact for the UK
10:15 – The business impacts of CRA (what, why, how and when?)
10:35 – Richard Marshall, CENELEC JTC13/WG9 and BSI IST/33/-/9 Chair – The CRA roadmap: What to expect
10:55 – Simon Dunkley, Itron and BSI IST/33/-/8 Chair (EN 18031) – The challenge ahead for OEMs based upon the RED Article 3.3
11:20 – Coffee Break
11:40 – Haydn Povey (SCI Semiconductor) – Building in cyber resilience
12:00 – Certification and global compliance
12:30 – Lunch and networking
13:30 – Mark Oliver (PA Consulting)
IoTSF plenary
13:55 – CRA action plan: How can IoTSF support the OEM sector?
14:20 – CRA panel discussion and audience Q&A: TUV SUD, Element, ITRON, Siemens, Direct Insight, and SafeShark
14:45 – Coffee break
15:00 – You’re now ready: IoTSF delivery of CRA compliance framework (David Pashley, Trevor Hall)
15:50 – Valedictory
16:00 – Event close
Our sincere thanks to PA Consulting for hosting and sponsoring this event.

