Presentation is loading. Please wait.

Presentation is loading. Please wait.

NRC Cyber Security Regulatory Program Development Background ANSI Nuclear Energy Standards Coordination Collaborative (NESCC) Meeting November 3, 2014November.

Published bySandra Bond Modified over 9 years ago

Similar presentations

Presentation on theme: "NRC Cyber Security Regulatory Program Development Background ANSI Nuclear Energy Standards Coordination Collaborative (NESCC) Meeting November 3, 2014November."— Presentation transcript:

1 NRC Cyber Security Regulatory Program Development Background ANSI Nuclear Energy Standards Coordination Collaborative (NESCC) Meeting November 3, 2014November 3, 2014 Ralph Costello, Security SpecialistRalph Costello, Security Specialist Cyber Security DirectorateCyber Security Directorate Office of Nuclear Security & Incident ResponseOffice of Nuclear Security & Incident Response

2 Introduction Inter-Agency Cooperation NRC Cyber Security Requirements Consequence-Based Approach NRC Inspections Cyber Security Reporting Next Steps 2

3 Inter-Agency Cooperation on Cyber Security 3

4 NRC Requirements March 2009 Cyber Security Rule (10 CFR 73.54) – Requires that nuclear power plant licensees: “Provide high assurance that digital computer and communication systems and networks are adequately protected against cyber attacks...” “Establish, implement, and maintain a cyber security program” to protect critical digital assets (CDAs). 4

5 Scope of 10 CFR 73.54 Safety-related and important-to-safety functions, Security functions, Emergency preparedness functions, including offsite communications, and Support systems and equipment important to safety and security. 5

6 Phased Implementation Interim Milestones 1-7 (completed by 12/31/2012) Cyber Security Plans Addresses key threat vectors Milestone 8 (site specific dates through 2017) Full cyber security program implementation Procedures and training Complete all design remediation actions 6

7 Consequence-Based Approach Graded approach – Focus NRC and licensee resources on most significant issues – Direct vs. Indirect CDAs Grouping of CDAs Development of templates and examples for efficiency and consistent implementation 7

8 NRC Oversight NRC inspections of Milestones 1-7 are ongoing – 39 inspections completed to date – Completion scheduled for 2015 NRC inspections of full implementation of cyber security implementation will begin in 2016 (Milestone 8) 8

9 Cyber Security Event Notification Rule Reporting requirements Proposed rule was issued in 2011 Public engagement – Public meetings – Public comments Final rule scheduled for 2015 9

10 Thank You Questions Comments Discussion 10

Download ppt "NRC Cyber Security Regulatory Program Development Background ANSI Nuclear Energy Standards Coordination Collaborative (NESCC) Meeting November 3, 2014November."

Similar presentations

NRC Consensus Standards Program

NRC Consensus Standards Program
Department of Homeland Security Site Assistance Visit (SAV)

Department of Homeland Security Site Assistance Visit (SAV)
Khammar Mrabit Director Office of Nuclear Security

Khammar Mrabit Director Office of Nuclear Security
USG INFORMATION SECURITY PROGRAM AUDIT: ACHIEVING SUCCESSFUL AUDIT OUTCOMES Cara King Senior IT Auditor, OIAC.

USG INFORMATION SECURITY PROGRAM AUDIT: ACHIEVING SUCCESSFUL AUDIT OUTCOMES Cara King Senior IT Auditor, OIAC.
Business Continuity Training & Awareness by Sulia Toutai (ANZ)

Business Continuity Training & Awareness by Sulia Toutai (ANZ)
Michael Thow Cyber Security Engineering Supervisor

Michael Thow Cyber Security Engineering Supervisor
INPO Update CMBG Meeting June 2013

INPO Update CMBG Meeting June 2013
Protecting the Public, Astronauts and Pilots, the NASA Workforce, and High-Value Equipment and Property Mission Success Starts With Safety “September 11th.

Protecting the Public, Astronauts and Pilots, the NASA Workforce, and High-Value Equipment and Property Mission Success Starts With Safety “September 11th.
Vermont Yankee Presentation to VSNAP 7/17/13 VY/Entergy Fukushima Response Update Bernard Buteau.

Vermont Yankee Presentation to VSNAP 7/17/13 VY/Entergy Fukushima Response Update Bernard Buteau.
Cyber Security Plans: Potential Impacts for Meteorology Programs

Cyber Security Plans: Potential Impacts for Meteorology Programs
Albert Coons April 21, 2009 Emergency Preparedness and New Reactor Licensing Process: An Update on Where We Are Now Federal Emergency Management Agency.

Albert Coons April 21, 2009 Emergency Preparedness and New Reactor Licensing Process: An Update on Where We Are Now Federal Emergency Management Agency.
1 NRC Regulatory Initiatives National Radiological Emergency Preparedness Conference 2009 April 21, 2009 Bill Dean Deputy Director, Office of Nuclear Security.

1 NRC Regulatory Initiatives National Radiological Emergency Preparedness Conference 2009 April 21, 2009 Bill Dean Deputy Director, Office of Nuclear Security.
IAEA International Atomic Energy Agency. IAEA Outline Learning objectives Introduction Functions of Regulatory Body (RB) on EPR Appraisal guidance: Part.

IAEA International Atomic Energy Agency. IAEA Outline Learning objectives Introduction Functions of Regulatory Body (RB) on EPR Appraisal guidance: Part.
National Infrastructure Protection Plan

National Infrastructure Protection Plan
An Insider’s Perspective on the NRC’s New Cyber Security Rule and Forthcoming Regulatory Guidance: Potential Impacts on Meteorology and Emergency Preparedness.

An Insider’s Perspective on the NRC’s New Cyber Security Rule and Forthcoming Regulatory Guidance: Potential Impacts on Meteorology and Emergency Preparedness.
1 Executive Office of Public Safety. 2 National Incident Management System.

1 Executive Office of Public Safety. 2 National Incident Management System.
Cyber Security Plan Implementation Presentation to CMBG Glen Frix, Duke Energy June 20, 2010 1.

Cyber Security Plan Implementation Presentation to CMBG Glen Frix, Duke Energy June 20,
DHS, National Cyber Security Division Overview

DHS, National Cyber Security Division Overview
Cumulative Impacts James Slider November 7, 2013.

Cumulative Impacts James Slider November 7, 2013.
Licensing of Nuclear Power Plants in Pakistan

Licensing of Nuclear Power Plants in Pakistan

Similar presentations

Ads by Google