DIGITAL SME ISAC Masterclass: Understanding Security by Design and Default for SMEs - European DIGITAL SME Alliance

DIGITAL SME ISAC Masterclass: Understanding Security by Design and Default for SMEs

May 13, 2026
|
14:00
-
14:45

Security by Design and Default is a core requirement for manufacturers developing products with digital elements under the Cyber Resilience Act. Yet for SMEs, translating these principles into everyday engineering practice remains a persistent challenge. ENISA’s newly published draft Security by Design and Default Playbook addresses this gap head-on, offering actionable guidance tailored to organisations with limited time, budgets, and specialist capacity.

This DIGITAL SME ISAC Masterclass gives you a hands-on look at the playbook which has been built specifically around the constraints SMEs face: limited budgets, small teams, and no dedicated cyber security staff. The playbook translates 22 security principles into actionable checklists, release gates, and evidence criteria that developers can apply immediately across their product lifecycle.

In this session, ENISA cybersecurity expert Yonas Leguesse will walk through the playbook’s key concepts and how to put them into practice. The second half of the Masterclass is an open feedback session where SME representatives can ask questions, raise implementation challenges, and feed directly into ENISA’s ongoing work.

What you will take away:

  • A clear grasp of what Security by Design and Default means in practice — and how it differs from compliance box-ticking
  • Familiarity with the playbook’s principles
  • Practical first steps your team can apply to your next release cycle
  • An understanding of how the playbook maps to CRA essential requirements
  • A direct channel to raise your organisation’s questions and challenges

Agenda

14:00 - 14:05

Welcome and Introduction 

  • Davide Iaccarino, Project Manager in Cybersecurity, European DIGITAL SME Alliance

14:05 - 14:25

Exploring the Playbook

  • Yonas Leguesse, Cybersecurity Expert, European Union Agency for Cybersecurity (ENISA)

14:25 - 14:40

Feedback session

14:40 - 14:45

Closing remarks

  • Davide Iaccarino, Cybersecurity Project Manager, European DIGITAL SME Alliance

Featured speaker

Yonas Leguesse, Cybersecurity Expert, European Union Agency for Cybersecurity (ENISA)

CONTACT US
© 2026 European DIGITAL SME Alliance. All rights reserved