Background
As existing nuclear facilities are modernised and new ones constructed, their dependence on digital systems is increasing dramatically. Digital systems are being integrated into everything from business systems to nuclear safety and security systems. This growing dependence on digital systems brings an ever-increasing need to implement strong defensive measures to protect them from compromise.
Cybersecurity is the protection of digital systems and the information contained within these systems against cyberattacks. Specifically, cybersecurity seeks to protect the confidentiality, integrity and availability of digital systems and the associated data and processes they maintain. Cybersecurity is a subset of information security which looks at the broader protection of information in both digital and physical form. Along with physical protection, cybersecurity needs to be part of the overall security strategy at a nuclear facility, and enhancing cybersecurity capabilities in the nuclear industry is a main priority for WINS.
Objectives
The objective of this five-day training course is to build awareness of the cyberthreat to nuclear facilities and to discuss the implementation of cybersecurity to reduce the risk from cyberattack. The course also serves as a venue for information sharing on operator experience related to implementing cybersecurity and developing a cyber-aware culture at nuclear facilities.
This training is derived from the WINS Academy module on Cybersecurity in the Nuclear Industry and the WINS Best Practice Guide Cybersecurity in a Nuclear Facility.
Audience
The main target audience of this activity are:
- Operators/licensees
- Nuclear industry organisations
- Academia
- Government officials
- International and non-governmental organisations
- Regulators
There are 20 seats available for this course. Nuclear industry professionals including female practitioners from diverse backgrounds and people with diverse gender identities are strongly encouraged to apply. There is no fee for attending this training course. Participants will be expected to cover their own travel and accommodation cost.
Process
This training course will be instructor led and lecture based. The course comprises presentations
on current cybersecurity guidance and state of practice in the nuclear industry. Discussion will also focus on relevant cybersecurity incidents and the lessons learned from these events. Finally, the course will use scenario-based discussions and group exercises related to implementing and managing cybersecurity at a fictitious nuclear power plant.
Participant discussions and questions are greatly encouraged.
The training course will be held in English. As with all WINS events, the discussions will be unclassified but subject to Chatham House rules (what was said can be reported, but not attributed).
Date: 13-17 February 2023
Language: English
Registration deadline: 11 January 2023
