We are seeking an experienced
Cyber Resilience Act (CRA) Implementation Consultant
to lead the transition from gap analysis to full operational compliance. The consultant will drive the implementation of CRA requirements and establish a comprehensive, auditable compliance framework across key cybersecurity domains.
Responsibilities
* Lead and manage the CRA compliance program from planning to execution
* Collaborate with cross-functional teams (product, engineering, legal) to implement CRA requirements
* Develop and maintain a detailed project plan with milestones and deliverables
* Conduct cybersecurity risk assessments for products with digital elements
* Define and implement a risk management framework based on recognized standards
* Tailor security requirements to the specific risk profiles of IoT devices
* Establish and maintain lifecycle documentation for risk assessments
* Design and implement a coordinated vulnerability disclosure policy
* Develop internal procedures for vulnerability identification, SBOM creation, and remediation
* Ensure timely mitigation and communication of exploitable vulnerabilities to customers and authorities
* Create templates and processes for technical documentation in line with CRA Annex VII
* Define clear, transparent formats for user-facing security documentation
* Ensure all documentation supports market surveillance and regulatory transparency
* Review existing software development processes and identify gaps related to secure development
* Define and implement a Secure Software Development Lifecycle (SSDL) based on NIST SSDF
* Provide training and guidance to architecture, development, and verification teams
* Document all newly implemented processes and frameworks
* Support onboarding of the incoming Digital Compliance Engineer
* Facilitate a structured handover to ensure continuity and sustained compliance momentum
Qualifications & Experience
* Experience in operative treasury or similar roles within large corporations or financial institutions
* Proven track record in project work, ideally in treasury transformation, system implementation, or M&A integration
* Commercial education with advanced qualifications in finance, treasury, or banking (e.g., CAS Swiss Certified Treasurer, Certified Corporate Treasurer)
* Hands-on experience with ERP systems (e.g., SAP)
* Familiarity with Treasury Management Systems and electronic banking platforms; experience with Coupa is a plus
* Strong proficiency in MS Office tools
* Fluent in English and German (written and spoken)