We are excited to present OSCRAT, a project Co-funded by the European Union, designed to enhance cybersecurity resilience and ensure compliance with the Cyber Resilience Act (CRA).

What is OSCRAT?

OSCRAT, which stands for Open-Source Cyber Resilience Act Tools, aims to support SMEs across Europe in meeting the cybersecurity standards set forth by the EU CRA. The project addresses the lack of dedicated cybersecurity resources in many small and medium enterprises, helping them manage and mitigate cyber risks more effectively and to meet the horizontal cybersecurity requirements for products with digital elements.

Project Partners

OSCRAT brings together a diverse consortium of experts:

Unicis 🇪🇪

Unicis is a start-up dedicated to making governance, risk, and compliance (GRC) simple, transparent, and accessible for startups and growing businesses.
Our open-source platform helps you manage security, data privacy, and audits with confidence—no enterprise budget required. With AI-driven innovation and industry expertise, we provide practical solutions that streamline policies, track risks, and build trust with customers. 

PMF Research 🇮🇹

PMF Research is an Italian SME based in Sicily. Its team is composed of professionals with a background in computer engineering and business management. Since 2003, PMF Research has specialised in conducting research and development activities in the ICT sector. Areas of interest range from augmented and virtual reality to artificial intelligence, blockchain and big data.

OVES Enterprise 🇷🇴

Based in Cluj-Napoca, Romania, Oves Enterprise is a global software engineering company with expertise in cybersecurity, fintech and outsourcing services. With over nine years of experience, it has trained and recruited top talent in these sectors.

Enersec 🇷🇴

Enersec is a Romanian SME specializing in technical consulting and cybersecurity governance, active since 2013. Since 2016, it has collaborated with the Romanian national cybersecurity incident response center (CERT-RO/DNSC).

EDIH Trakia 🇧🇬

The EDIH Trakia consortium brings together universities, SMEs, public administrations and industry associations to help bridge the digital gap in Bulgaria. It is a partner of the Enterprise Europe Network (EEN) and the European Cybersecurity Corridor.

EMAG 🇵🇱

EMAG, with over 7,000 employees and 22 research institutes across 12 cities in Poland, is part of the Łukasiewicz research network. It specializes in applied computer science, information technologies, and cybersecurity, with a strong focus on Industry 4.0.

Unicis Platform Early Access

With Unicis, you can manage tasks for security, privacy, and compliance team in one place.
Collaborate accross multiple teams about gap analysis, register of procedures and transfer impact assessment.

OSCRAT Work Packages

The project is structured into five key work packages:

1. Project Management (WP1) – Led by PMF Research, this package ensures effective coordination and monitoring.
2. Requirements Analysis (WP2) – EMAG. Collecting insights from SMEs to define the project’s scope and functionality.
3. Software Design and Development (WP3) – Oves Enterprise. Develops the open-source tool tailored to SME needs.
4. Stakeholder Engagement (WP4) – EDIH Trakia. Organize workshops and webinars to gather feedback from stakeholders.
5. Dissemination and Impact (WP5) – PMF Research. Raising awareness and promoting the adoption of the tool.

OSCRAT’s Goals

The main objectives of OSCRAT include:

• Enhancing Cyber Resilience: Providing SMEs with tools to better manage cybersecurity risks.
• Supporting CRA Compliance: Automating the generation of the necessary documentation to comply with the Cyber Resilience Act.
• Promoting Cross-Border Collaboration: Fostering cooperation between SMEs, cybersecurity experts, and EU institutions.
• Contributing to Environmental Sustainability: Aligning with the European Green Deal to promote eco-friendly cybersecurity practices.
• Aligning with EU Policies: Ensuring all activities are in line with EU cybersecurity frameworks.

Looking Forward

As OSCRAT progresses, its open-source tools will provide SMEs with a strategic framework to improve cybersecurity, manage vulnerabilities, and comply with EU regulations. The project not only supports businesses in meeting cybersecurity standards but also contributes to the overall competitiveness and resilience of the EU digital economy.

For more information about OSCRAT and its partners, visit www.oscrat.eu.

Newsletter

E-mail is mandatory.

This is required.

Follow us on

• X
• Bluesky
• Mastodon
• LinkedIn
• Discord
• Vimeo