Skip to main content
https://www.youtube.com/watch?v=mypT8rSWeoY

Arrow Cybersecurity Consultancy

Arrow Cybersecurity Consultancy (ArrowCC)

Is a specialized consultancy

Focused on Common Criteria, EUCC, and Cyber Resilience Act (CRA) compliance. We help manufacturers, developers, and evaluation labs navigate complex certification processes with structure and clarity.

We focus on a small set of highly specialized services:

  • Common Criteria consultancy
  • CRA compliance guidance
  • Site certification (Common Criteria and EMVCo) gap analysis
  • Training (with a focus on in-person, hands-on sessions)

If you’d like to know more about who I am and how I work, please visit the About Me page.

To explore the areas where I can support your certification journey, take a look at the Services section and see how I can help.

SERVICES

Common Criteria/EUCC consultancy

Navigating a Common Criteria (CC) or EUCC certification can be complex, especially when aiming for High assurance levels. I can support you throughout the process, by helping you:
  • Draft or review certification evidence, including Security Targets, design documents, guidance, and vulnerability analysis.
  • Interpret and apply Protection Profiles (PPs) correctly, ensuring your product’s design and documentation align with the chosen PP and its security objectives.
  • Engage effectively with evaluation labs and certification bodies, avoiding common pitfalls and saving valuable time.
  • Plan for Substantial or High EUCC assurance levels, identifying what additional rigour or documentation is needed to meet higher assurance expectations.

The goal is to make certification predictable and achievable, without unnecessary complexity.

PROJECTS

Blog and new projects showcase

View All Projects
Test projectCommercial

Test project

Sed non porttitor leo. Curabitur tristique ligula non purus vestibulum sodales. Nunc quis nisl orci. Proin id nisi ut odio vulputate gravida. Orci varius natoque penatibus et magni