Excellent learning and peer-to-peer networking opportunities with a cross-section of the nuclear industry.
The world’s first certified professional development programme for individuals in nuclear security management.
An extensive archive of information on nuclear security, both from WINS and from external sources.
Helping licensees assess the maturity of their security programme and measure their security culture effectiveness.
We are living in an era when cyberattacks are common. The number and complexity of cyberattacks has increased in recent years, and the nuclear industry is not exempt. Cybersecurity is challenging as cyberattacks are potentially more dynamic and more complex to counter than physical attacks. In addition, cyberthreats may originate from a different country far away from the nuclear facility. The world of cybersecurity is changing all the time as adversaries shift their tactics by creating new and innovative ways to carry out a cyberattack.
A cyberattack targeting information held in either an IT or an OT system at a nuclear facility could ultimately result in the sabotage of the facility or the theft of material. These scenarios can be prevented or mitigated by having an appropriate nuclear security regime in place that addresses all risks, including cybersecurity. This means, for instance, having an appropriate legal and regulatory framework, having responsibilities assigned to the right competent authorities and ensuring that operators have developed appropriate systems and measures to detect, assess and respond to a cybersecurity incident.
This online workshop explored cybersecurity challenges for operators taking into account differing levels of maturity of the regulatory framework and with a view to positioning cybersecurity as a key risk to be managed within the organisation. The pre-workshop material set the scene by providing material related to the overall context. The live sessions identified international best practices and lessons learned that will help the different stakeholders to reduce the risk posed by cyberthreat actors.
The overall objective of this workshop was to provide attendees with an overview of cybersecurity in the nuclear industry, including challenges, terminology, relevant best practices and standards and focusing then on the operating organisation within this context. The key findings of this workshop will contribute to the WINS International Best Practice Guide on Cybersecurity for the Nuclear Industry that WINS will publish in 2022.
The workshop addressed the following main topics:
DAY 1: UNDERSTANDING CYBERSECURITY IN THE NUCLEAR INDUSTRY
DAY 2: IMPLEMENTING AND SUSTAINING CYBERSECURITY PROGRAMMES
DAY 3: EMERGING TOPICS IN CYBERSECURITY, WHAT’S ON THE HORIZON?
WINS welcomed participation from the following experts and organisations:
WINS is promoting gender parity and diversity in all of its events. This event had both female and male subject matter experts. Female participants and people from all backgrounds were strongly encouraged to apply for this event.
This professionally facilitated online workshop brought together international cybersecurity specialists and leading thinkers including subject matter experts on nuclear security. The event followed a remote engagement approach in which the audience was challenged to identify and share best practices and lessons learned on this important topic.
WINS organised the online engagement as follows:
WINS provided participants the opportunity to interact amongst themselves and with subject matter experts to exchange their thoughts and professional experiences on the topic.
All elements of this online workshop were conducted in English and drew only on unclassified information. Based on the various presentations and discussions, WINS will produce an event report highlighting the key findings of the event.
Recording: The recording of each session of the workshop is available for WINS Members here.