Sweeping new cybersecurity requirements under the Cyber Resilience Act (CRA), proposed to cover any internet-connected device sold within the European Union, may present challenges for companies developing new software, according to Courtney Lang, a senior director of policy for the International Technology Industry Council (ITI). We discuss what products are covered under the CRA and justifications for the proposal, and distill takeaways from the webinar, where Lang spoke with colleague Guido Lobrano, ITI’s senior vice president of policy and director general for Europe, about obligations and considerations for manufacturers and software developers, and the CRA’s place in an evolving regulatory landscape. See “How to Address Intensifying Enterprise IoT Security Risks” (Oct. 14, 2020).