Software Development, Testing & Security

Marcel Depré

Strong focus on ENISA Guidelines (EU-driven, CRA-aligned), IEC 62443-4-1/4-2 (secure development & lifecycle), and ISO/IEC 27001 with specialized add-ons for comprehensive security management.

Explore Services Schedule Consultation
IEC 62443
Specialist
25+ Years
Experience
CRA Ready
Compliance
Industrial
Systems

Services

Software development and security services for Dutch and European organizations

Software Architecture

  • ✓ Enterprise system design
  • ✓ Microservices architecture
  • ✓ API development & integration
  • ✓ Cloud-native solutions

Building reliable systems with modern technologies

Industrial Cybersecurity

  • IEC 62443-4-1 secure product development
  • IEC 62443-4-2 lifecycle security requirements
  • ENISA Guidelines (EU-aligned CRA approach)
  • Threat modeling & security validation

EU-driven standards for industrial control systems

Organizational Security

  • ISO/IEC 27001 implementation
  • ISO/IEC 27034 application security
  • ISO/IEC 29147 vulnerability disclosure
  • ISO/IEC 30111 vulnerability handling

Comprehensive security management systems

Software Testing & QA

  • ✓ End-to-end (E2E) testing
  • ✓ Dynamic application security testing (DAST)
  • ✓ Test automation frameworks
  • ✓ CI/CD integration & quality gates

Active development with focus on testing excellence

Digital Platform

EU-Cyber-Laws.com

Born from frustration with traditional compliance approaches - transforming cybersecurity from checkbox bureaucracy to engaging, accessible practice.

The Problem

Most companies approach DSA, CRA, and cybersecurity compliance through:

  • • Endless paperwork and bureaucratic forms
  • • Checkbox mentality without real understanding
  • • Lack of structure and clear implementation paths
  • • Disconnect between security teams and developers
  • • Compliance seen as burden, not value-add

The Security Driven Mindset

My vision: cybersecurity accessible to every SDLC stakeholder through:

  • • Bottom-up approach that motivates teams
  • • Clear targets within reach, showing added value
  • • Tools that make compliance work engaging
  • • DevOps integration: CI/CD, SBOM, DAST, AI reviews
  • • Audit trails and documentation that actually help

Comprehensive EU Compliance Framework

GDPR
Data Protection
NIS2
Network Security
CRA
Cyber Resilience
DSA
Digital Services

Making Compliance Engaging

DevOps Integration

CI/CD pipelines with built-in security checks, automated compliance validation

Modern Tooling

Code forensics, static analysis, SBOM generation, DAST scanning, AI-powered reviews

Practical Frameworks

Clear implementation paths, actionable guidance, measurable outcomes

Experience the Security Driven Mindset

Transforming compliance from burden to competitive advantage

Current Work

ABB SpiritIt

Software Security & Compliance Specialist

Leading ENISA-aligned security implementation with IEC 62443-4-1/4-2 focus for industrial control systems.

  • • ENISA Guidelines (EU-driven CRA approach)
  • • IEC 62443-4-1 secure product development
  • • IEC 62443-4-2 lifecycle security requirements
  • • ISO/IEC 27001 security management

EU-Cyber-Laws.com

Founder & Owner

Information platform for EU cybersecurity compliance requirements.

  • • Compliance Tools
  • • Regulatory Guidance
  • • Expert Resources

Depré.nl

Independent Consultancy

Independent consulting in software development, security, and compliance.

  • • Software Testing & QA (E2E, DAST)
  • • Security Consulting
  • • Technical Leadership
  • • Active Development Projects

Key Achievements

Notable projects across 25+ years of experience

Philips Medical

Class IIa medical device software for digital pathology collaboration platform

Global sharing of Whole Slide Images between pathologists
→ View project details

Stichting Praktijkleren

Nationwide assessment platform for Dutch secondary education (VMBO)

200+ concurrent Kubernetes pods, secure data handling
→ View project details

SCA Global System

Data acquisition across 350 production lines in 26 factories worldwide

Six-sigma quality analysis, real-time data processing
→ View project details

Vitens Water

Critical infrastructure alarm systems across five Dutch provinces

Emergency management, PAS 2.0 migrations
→ View project details

Center Parcs

Hardware/firmware development for vacation bungalow access control

Mesh networking, server-less operation
→ View project details

Friesland Campina

Fully automated cheese production with AGV-controlled warehouse

Recipe control, crane optimization, web interfaces
→ View project details

Efteling Theme Park

Pandadroom 4D experience and show control systems for Europe's largest theme park

Mechatronic robotics, lighting, special effects synchronization
→ View project details

Mikrocentrum Training

13 years of specialized OPC and RFID technology education and workshops

DCOM-based OPC, OPC-UA protocols, RFID fundamentals
→ View experience details

ABB SpiritIt Security & Compliance

ENISA-aligned security implementation with IEC 62443 focus for industrial control

CRA compliance, secure product development, lifecycle security
→ View current work
View Complete Portfolio

Approach

Focus areas for software development and security

IEC 62443 Expert

Specialized in secure SDLC for industrial systems

CRA Ready

Expert in EU Cyber Resilience Act compliance

25+ Years

Proven track record since 1996

Local & International

Dutch, English, and German language support

Ready to Transform Your Business?

Let's Discuss Your Next Project

From security architecture to regulatory compliance, I bring the expertise needed to ensure your technology initiatives succeed.

Schedule Consultation Connect on LinkedIn

Trusted by enterprises across Europe • 15+ years of excellence