Background
In today’s increasingly digital and interconnected world, organisations face a rapidly evolving threat landscape. Cyberattacks are growing in sophistication, frequency, and impact—often outpacing the capabilities of traditional security tools and practices. Adversaries now exploit automation, artificial intelligence (AI), and machine learning (ML) to orchestrate highly targeted, fast-moving attacks across global networks.
For the nuclear sector, these risks carry heightened implications. Nuclear facilities rely on complex industrial processes that were not always originally designed with cybersecurity in mind. Disruption of these systems can have consequences not only for plant safety and security but also for national and international stability. Insider threats, ransomware targeting critical systems, and vulnerabilities in digital supply chains further underscore the urgency of adopting robust cybersecurity measures.
International bodies such as the IAEA have highlighted the importance of strengthening cyber resilience at nuclear facilities. However, translating high-level guidance into practical, effective cybersecurity programmes remains a challenge—particularly as adversaries leverage increasingly advanced tools. This creates a pressing need to share lessons learned, align with international best practices, and harness the latest technologies to close the gap.
Advanced technologies, including AI-powered threat detection, behavioural analytics, zero trust frameworks, security orchestration and automated response (SOAR), and cloud-native security platforms, offer new opportunities for nuclear operators. These tools not only enhance detection and response capabilities but also help security teams manage risks more efficiently, filter through massive volumes of threat data, and act proactively, often preventing breaches before they occur.
Objectives
The workshop will explore how advanced technologies are transforming cybersecurity practices within the nuclear sector and other critical infrastructure. It will provide a platform for participants to exchange experiences, learn from practical case studies, and build a deeper understanding of how to strengthen cyber resilience at the organisational, national and international levels.
The workshop will provide participants with the opportunity to:
- Understand the cyber threat landscape specific to the nuclear sector, including OT-targeted attacks and supply chain risks
- Learn how AI, ML, automation, and analytics are transforming cybersecurity practices in critical infrastructure
- Explore how advanced technologies support regulatory compliance and operational resilience
- Examine selected security frameworks, such as zero trust, SOAR and XDR, and review their applicability at nuclear facilities
- Engage with use cases demonstrating real-world technology integration in nuclear environments
Participants will be encouraged to identify immediate steps that can be taken to strengthen cybersecurity programmes and mitigate cyber threats in their organisations and countries.
Audience
This event will be interactive and professionally facilitated. The workshop will be built around a number of presentations as well as case studies and breakout sessions that enable participants to further explore the topic and share their experiences and lessons learned.
Experts from the nuclear industry and other critical infrastructure will be invited to share their experiences and lessons learned from implementing advanced technologies in their cybersecurity programmes.
An online electronic voting system will allow participants to anonymously provide their views on questions put to the audience.
The workshop will be held in English. The discussions will be unclassified but subject to Chatham House rules (what was said can be reported, but not attributed).
Process
The workshop will be open to a group of around 40 participants from all over the world.
The target audience for this event are individuals who are responsible for cybersecurity at nuclear facilities.
Targeted participants include, amongst others, representatives from nuclear operating organisations, digital technology vendors, information security organisations, regulators and technical support organisations, academia, law enforcement agencies and relevant international organisations.
Representatives from other critical infrastructures will be invited to share their experience and insights on the topic.
Female practitioners will be strongly encouraged to apply. At least 40% has been set up as target for female speakers and female participants.
