19. January 2026

Great Debate: CRA – admeritia on the Main Stage at S4x26

On 24 February 2026, our CTO Sarah Fluchs will be on the Main Stage at S4x26 in Miami Beach for the "Great Debate: CRA", discussing whether the Cyber Resilience Act will measurably strengthen OT security in the EU in three years' time.

Together with our CEO Heiko Rudolph, she is looking forward to meeting you in person at S4x26 (23–26 February 2026).

Blogposts

Hard Hats

Security unter Kontrolle

Events

Lectures, podcasts & papers

Infographics

Videos

admeritia Blogposts

Sarah Fluchs Blog Peter Breidbach's Blog Tobias Halman's Blog

Sarah Fluchs' Blog "Fluchsfriction":

Specifying the Intended Purpose of a CRA product

For manufacturers who master this, everything falls into place

28. January 2026

The 5 elements of a good cybersecurity risk assessment

A guide to quickly improve any risk assessment

29. November 2025

How a cyberattack on a software product brought EU airports to a halt

Security incident at RTX subsidiary Collins Aerospace

13. October 2025

Cyber Resilience Act FAQ: Support Period

Continuously updated questions and answers

07. October 2025

Cyber Resilience Act FAQ: Vulnerability handling

Continuously updated questions and answers

27. August 2025

Root causes of cyber incidents

Part 1: The most actionable reports available and a wishlist for better ones

27. August 2025

CER directive: Resilience for “everything but cyber”

…and why it still matters for cybersecurity

07. July 2025

Cyber Resilience Act: When will requirements finally get more specific?

Outlook & timeline for harmonised standards and additional EU commission guidance

19. May 2025

Mandatory, externally verified cybersecurity certificates are approaching

EUCC (EU Common Criteria) and the Cyber Resilience Act

13. April 2025

EN 18031: The stepping stone for product security standardization

18. March 2025

Make The Big Decisions With Cyber Decision Diagrams

23. February 2025

CRA & Machinery regulation

Similarities, differences — and how to efficiently meet the security requirements of both regulations

26. November 2024

Cyber Resilience Act in 5 minutes

How it works, what it requires, and 3 steps to take now

29. October 2024

Product security regulation in 2024

An overview

24. September 2024

Almost a master key to the Internet: The xz utils backdoor

Why everyone is so upset and what we can learn from the near-disaster

24. September 2024

Almost a master key to the Internet: The xz utils backdoor

Why everyone is so upset and what we can learn from the near-disaster

26. May 2024

What the Cyber Resilience Act requires from manufacturers

Documentation, documentation, documentation (that’s actually better than it sounds)

20. March 2024

Beyond principles: How to finally get a handle on security by design

Start making model-based cybersecurity decisions in 3 steps

26. February 2024

New US CISA recommendations on Security by Design

The answers are not perfect, but the questions are good...

07. November 2023

To "Fluchsfriction" Blog

Peter Breidbach's Blog:

Die Kritische Infrastruktur ist tot. Lang lebe die kritische Anlage!

12. Juni 2023

Die neue ISO/IEC 27001 ist da – Was muss ich als zertifiziertes Unternehmen nun tun?

11. November 2022

Cybersecurity im Sicherheitsbericht von Störfallbetrieben

5. April 2022

Bundestag verabschiedet IT-SiG 2.0

03. März 2021

To Peter Breidbach's Blog

Tobias Halmans Blog:

Das ABC der OT Table Top Exercises

26. May 2025

Indicators of Compromise (IoCs) in der OT: Wonach soll ich konkret suchen? (Teil 2)

08. March 2025

Irgendwie anders: Notfallvorsorge in der OT

24. January 2025

Indicators of Compromise (IoCs) in der OT: Wonach soll ich konkret suchen? (Teil 1)?

10. Dezember 2024

Angriffserkennung in der OT: Wie geht das?

14. November 2024

Detektion von Cyberbedrohungen in der OT: Was ist das und warum ist das wichtig?

04. November 2024

Zu Tobias Halmans Blog

Your contact person

Sarah Fluchs
Chief Technology Officer

Medium: @fluchsfriction
Linkedin: Linkedin

Tel.: +49 21 73 20363-0
Email: email_info

Subscribe to our English security briefing for hard hats!

Security unter Kontrolle

The congress for everyone involved in security in the industry. SECURITY? ...let's get it under control together!

The digitalisation of industry is constantly opening up new gateways for cyber threats. SECURITY UNTER KONTROLLE, launched by admeritia GmbH and Vulkan Verlag, would like to work with you to bring together, promote and make visible the German-speaking automation community that deals with security.

admeritia GmbH heads the congress advisory board and coordinates the content of the programme.

Events

SECURITY UNTER KONTROLLE

17. - 18. March 2026

Congress, Duisburg

Cyber Resilience Act Conference

23. - 26. February 2026

Conference, Miami South Beach

Cyber Resilience Act Conference

06. November 2025

Conference, Online

Cyber Resilience Act: Clarity of mind despite all uncertainties

25. September 2025

Webinar, Online

Cyberwomen 2025

23. September 2025

Lecture, Cologne

DSLAM Night Shift

08. April 2025

Lecture, Cologne

ONE Conference

01. - 02. October 2024

Conference, The Hague

MCTTP 2024

17. - 19. September 2024

Conference, Munich

SECURITY UNTER KONTROLLE 2024

04. - 05. September 2024

Congress, Dusseldorf

OTCEP 2024

20. - 21. August 2024

Conference, Singapore

ISA OT Cybersecurity Summit 2024

18. - 19. June 2024

Conference, London

Phish-Bot 2024

10. - 12. June 2024

Conference, Bochum

DSLAM II

04. June 2024

Conference, Leipzig

Safety und Security in der Anlagensicherheit 2024

22. February 2024

Conference, Essen

Industrial Security Conference 2023

14. - 15. November 2023

Conference, Copenhagen

OTCEP 2023

22. - 23. August 2023

Conference, Singapore

AUTOMATION 2023

27. - 28. June 2023

Congress, Baden-Baden

Safety und Security in der Anlagensicherheit

21. - 23. May 2023

Conference, Essen

SECURITY UNTER KONTROLLE 2023

10. - 11. May 2023

Congress, Dusseldorf

S4x23

13. - 16. February 2023

Conference, Miami South Beach

IECON22

17. - 20. October 2022

Conference, Brussels

OTCEP 2022

12. - 13. July 2022

Conference, Singapore

EKA 2022

23. - 24. June 2022

Conference, Magdeburg

HHU Campusmesse 2021

19. May 2021

Job fair, Dusseldorf

HMI 2021 Online

12. - 16. April 2021

Trade fair, Hanover

Lectures, podcasts and papers

Great Debate: CRA

23. - 26. February 2026

Lecture | S4x26

Wie sieht eine Security-Risikoanalyse aus?

06. November 2025

Lecture | CRA Conference

OT Emergency Preparedness: When Disaster Recovery Meets Real-World Safety

21. July 2025

Podcast | Redefining CyberSecurity

Kritische Infrastrukturen — wenn IT-Sicherheit zur Schwachstelle wird

26. June 2025

Podcast | They Talk Tech

Episode 100: Sarah Fluchs on the Cyber Resilience Act

18. June 2025

Podcast | Nexus Podcast

Wie sicher ist Deutschlands IT wirklich?

11. May 2025

Podcast | #Gamechanger mit Toygar Çinar

Das beleidigt die Intelligenz von Nicht-ITlern – Aber wie erklärt man IT richtig?

08. April 2025

Lecture | DSLAM2025

Sind OT-Standards Fluch oder Segen?

03. April 2025

Podcast | IT IST ALLES

#31: Trinkwasser in Gefahr? Hackerangriffe auf kritische Infrastrukturen

26. March 2025

Podcast | Follow the White Rabbit

The Cyber Resilience Act: How the EU is Reshaping Digital Product Security

11. March 2025

Podcast | Redefining CyberSecurity

Treffen Sie die großen Entscheidungen mit Cyber-Entscheidungsdiagrammen

23. Februay 2025

Lecture | S4x25

Wie funktioniert Cybersecurity in industriellen Systemen?

11. October 2024

Podcast | KrisenHacks

Security by Design — A Communication Problem?

18. June 2024

Keynote | ISA OT Cybersecurity Summit 2024

Evolution of Carhacking - from Past 2 Future

12. June 2024

Lecture | Phish-Bot 2024

Mythbusting CyberAv3ngers

11. June 2024

Lecture | Phish-Bot 2024

White hat? Black hat? All you need is a hard hat! Was IT von OT lernen kann.

04. June 2024

Lecture | DSLAM II

Von Anfang an sicher: So funktioniert Security by Design

27. May 2024

Podcast | Episode 25 - Cybersecurity ist Chefsache

IT-RB in der Praxis

22. February 2024

Lecture | Safety und Security in der Anlagensicherheit 2024

IT-Risikobeurteilung

22. February 2024

Lecture | Safety und Security in der Anlagensicherheit 2024

Who’s responsible for Security By Design? (not who you think of first)

08. Febrary 2024

Podcast | OT Security Made Simple

Cybersicherheit im Stromnetz - eine 360°-Ansicht | Teil 5

11. January 2024

Podcast | Omicron-Podcast "Energy Talks"

Industrial Security Conference 2023

14. - 15. November 2023

Lecture | Industrial Security Conference 2023

How to Turn Security by Design from Myth to Reality

22. - 23. August 2023

Lecture | OTCEP 2023

Security By Design Decision

13. - 16. February 2023

Lecture | S4x23

Security by Design Integration Mechanisms for Industrial Control Systems

17. - 20. October 2023

Lecture | IECON22

Securing PLC Code Practices

12. - 13. July 2022

Lecture | OTCEP 2022

AUTOMATION 2022

28. - 29. June 2022

Lecture | VDI Wissensforum

Security unter Kontrolle: Call for Contributions

22. June 2022

Press release | Security unter Kontrolle

Safety and security in plant safety

22. - 24. March 2022

Lecture | IT risk assessment at the KAS‑51

S4x22 ICS Security Event

25. - 27. January 2022

Lecture | S4x22

Infographics

DE - KAS-51 im Zusammenhang mit Security for Safety

DE - Incident Response Guideline

DE - Was bringt eine Produktzertifizierung?

Infografik_Systeme vs Funktionen: Warum Funktionen

DE - Systeme vs Funktionen: Warum Funktionen

EN - Systems vs Functions: Why functions

DE - KRITIS Straßenverkehr

DE - IT vs OT: Mentalität, Technologie, Anforderungen

EN - IT vs OT: Mindset, Technology, Requirements

DE - Stay Safe Online

Videos

DE - DSLAM2025: Das beleidigt die Intelligenz von Nicht-ITlern – Aber wie erklärt man IT richtig?

08. April 2025 - Sarah Fluchs

EN - Redefining CyberSecurity: The Cyber Resilience Act: How the EU is Reshaping Digital Product Security

11. March 2025 - Sarah Fluchs

EN - S4x25: Treffen Sie die großen Entscheidungen mit Cyber-Entscheidungsdiagrammen

23. Februay 2025 - Sarah Fluchs

DE - DSLAM2024: White hat? Black hat? All you need is hard hat! Was IT von OT lernen kann

02. June 2024 - Sarah Fluchs

DE - Cybersecurity ist Chefsache: Folge 25 - Von Anfang an sicher: So funktioniert Security by Design mit Sarah Fluchs

27. May 2024 - Sarah Fluchs

EN - OTCEP Forum 2023: How to Turn Security by Design from Myth to Reality

23. August 2023 - Sarah Fluchs

EN - S4x23: Security By Design Decision

14. February 2023 - Sarah Fluchs

EN - OTCEP Forum 2022: Securing PLC Code Practices

13. July 2022 - Sarah Fluchs

EN - Top 20 Secure PLC Coding Practices

08. August 2021 - Sarah Fluchs / Vivek Ponnada

DE - Was ist Security Engineering? - Science Slam

02. July 2021 - Sarah Fluchs

EN - OT security and safety: Two perspectives, shared objective – ICS Cybersec 2021

02. July 2021 - Sarah Fluchs

DE - Produktzertifizierung - Sind Sie als Hersteller betroffen und was müssen Sie jetzt tun?

12. December 2019 - admeritia GmbH

EN - Layered Blueprints for OT Security

26. February 2019 - Sarah Fluchs

DE - Anforderungen an KRITIS-Betreiber gem. §8a BSIG - B3S Straßenverkehr / Sektor Verkehr

30. October 2018 - admeritia GmbH

Your contact person

Andreas Eichmann
Senior Account Manager

Tel.: +49 2173 20363-0
Email: email_info

... and how do you want to improve your security?

News

28. January 2026

Blog – Specifying the Intended Purpose of a CRA product

19. January 2026

News – Great Debate: CRA – admeritia on the Main Stage at S4x26

09. December 2025

News – admeritia wishes you a Merry Christmas!

29. November 2025

Blog – The 5 elements of a good cybersecurity risk assessment