NRC Cyber Security Regulatory Program Development Background ANSI Nuclear Energy Standards Coordination Collaborative (NESCC) Meeting November 3, 2014November.

Slides:



Advertisements
Similar presentations
NRC Consensus Standards Program
Advertisements

Department of Homeland Security Site Assistance Visit (SAV)
Khammar Mrabit Director Office of Nuclear Security
USG INFORMATION SECURITY PROGRAM AUDIT: ACHIEVING SUCCESSFUL AUDIT OUTCOMES Cara King Senior IT Auditor, OIAC.
Business Continuity Training & Awareness by Sulia Toutai (ANZ)
Michael Thow Cyber Security Engineering Supervisor
INPO Update CMBG Meeting June 2013
Protecting the Public, Astronauts and Pilots, the NASA Workforce, and High-Value Equipment and Property Mission Success Starts With Safety “September 11th.
Vermont Yankee Presentation to VSNAP 7/17/13 VY/Entergy Fukushima Response Update Bernard Buteau.
Cyber Security Plans: Potential Impacts for Meteorology Programs
Albert Coons April 21, 2009 Emergency Preparedness and New Reactor Licensing Process: An Update on Where We Are Now Federal Emergency Management Agency.
1 NRC Regulatory Initiatives National Radiological Emergency Preparedness Conference 2009 April 21, 2009 Bill Dean Deputy Director, Office of Nuclear Security.
IAEA International Atomic Energy Agency. IAEA Outline Learning objectives Introduction Functions of Regulatory Body (RB) on EPR Appraisal guidance: Part.
National Infrastructure Protection Plan
An Insider’s Perspective on the NRC’s New Cyber Security Rule and Forthcoming Regulatory Guidance: Potential Impacts on Meteorology and Emergency Preparedness.
1 Executive Office of Public Safety. 2 National Incident Management System.
Cyber Security Plan Implementation Presentation to CMBG Glen Frix, Duke Energy June 20,
DHS, National Cyber Security Division Overview
Cumulative Impacts James Slider November 7, 2013.
Licensing of Nuclear Power Plants in Pakistan
1 NRC Plans for NESCC Concrete Specifications, Codes & Standards (SCS) Endorsement NESCC Meeting March 28, 2013 Richard Jervey USNRC Office of Regulatory.
NATIONAL INCIDENT MANAGEMENT SYSTEM. National Incident Management System (NIMS) Background In response to September 11, 2001 (9-11), the Homeland Security.
Resiliency Rules: 7 Steps for Critical Infrastructure Protection.
National Incident Management System. Homeland Security Presidential Directive – 5 Directed the development of the National Incident Management System.
Critical Infrastructure Protection Update Christine Hasha CIP Compliance Lead Advisor, ERCOT TAC March 27, 2014.
Nuclear Power Plant “Bright-Line” NERC:. Tim Roxey and Jim Hughes NRC:
AGREEMENT STATES VS U.S. NUCLEAR REGULATORY COMMISSION AUBREY GODWIN AZ RADIATION REGULATORY AGENCY.
Federal Emergency Management Agency Radiological Emergency Preparedness Program Region I, Boston September 10, 2012.
Technical Meeting on Evaluation Methodology for Nuclear Power Infrastructure Development December, 2008 Nuclear Safety in Infrastructure Building.
FY2010 PEMP Notable Outcomes October 15, FRA, LLC Board of Directors 10/15-16/2009 Office of Quality and Best Practices Performance Evaluation Management.
Consideration of Michigan Pursuing an NRC Agreement A Discussion with Stakeholders March 2, 2007.
LEGAL FRAMEWORK & REGULATORY SYSTEM f or introduction of NPP into Vietnam Le Chi Dung (VARANS, Vietnam) Vienna, December 2008.
INCIDENT AND EMERGENCY CENTRE Department of Nuclear Safety and Security IECIEC.
IAEA International Atomic Energy Agency IAEA Nuclear Security Programme Enhancing cybersecurity in nuclear infrastructure TWG-NPPIC – IAEA May 09 – A.
Nuclear Energy Institute Initiatives NRC Region I/FEMA I, II, & III Joint Scheduling Conference Susan Perkins-Grew Senior Project Manager.
1 Attributes of a Successful Nuclear Construction Project – A Regulator’s Perspective Victor M. McCree Deputy Regional Administrator for Operations U.S.
Critical Infrastructure Protection Update Christine Hasha CIP Compliance Lead Advisor, ERCOT TAC March 27, 2014.
Small Modular Reactor Licensing Design Specific Review Standards 11/29/20121 Joseph Colaccino Acting Deputy Director Division of Advanced Reactors and.
RIC 2009 Rulemaking Process: “NRC and Industry Perspectives on Improving Quality, Timeliness, and Consistency in 10 CFR 50.55a “A New Approach” Jacob Zimmerman.
2011 East African Internet Governance Forum (EA – IGF) Rwanda Cyber briefing: Positive steps and challenges Didier Nkurikiyimfura IT Security Division.
NRC Materials Program Cyber Security Organization of Agreement States Annual Meeting August 2015 Adelaide Giantelli Office of Nuclear Material Safety and.
1 Emerging Issues: Materials and Mechanical Michele G. Evans, Session Chair 2009 RIC.
NRC Region I Lessons Learned Steve Barr Senior Emergency Preparedness Inspector Region I US Nuclear Regulatory Commission 2010 NRC Region I Joint Exercise.
Governor’s Office of Homeland Security & Emergency Preparedness LOUISIANA BANKERS ASSOCIATION 2010 Louisiana Emergency Preparedness Coalition Meetings.
Organization of the peer review process of stress tests in the European context “stress tests of NPP Dukovany and NPP Temelín - evaluation of safety and.
NMMSS Challenges and Opportunities Ray Holmer Director Office of Information Management Office of Health, Safety, and Security May 20, 2009.
Jim Hill Nuclear Management Company Nuclear Plant Operation under NRC Reactor Oversight Program.
1 RIC 2009 Cyber Security at Nuclear Facilities Scott A. Morris Office of Nuclear Security & Incident Response March 11, 2009.
[Exercise Name] Full Scale Exercise Controller & Evaluator Debriefing [Location] [Date] [Logo Here]
1 RIC 2009 Fire Protection: Organizational Readiness for NFPA 805 (Technical Session 5) Alexander Klein, P.E. Chief, Fire Protection Branch Office of Nuclear.
1 RIC 2009 NUCLEAR SECURITY Garmon West, Chief Security Training and Support Branch Division of Security Operations Office of Nuclear Security and Incident.
IAEA International Atomic Energy Agency Arusha, Tanzania Uganda Dr. Akisophel Kisolo Project Counterpart 2 – 5 December 2013 RAF9038 Final Coordination.
NATIONAL INCIDENT MANAGEMENT SYSTEM Department of Homeland Security Executive Office of Public Safety.
IAEA International Atomic Energy Agency Arusha, Tanzania (NIGERIA) Dr Yau IDRIS 2 – 5 December 2013 RAF9038 Final Coordination Meeting.
Safety Management Systems Session Four Safety Promotion APTA Webinar June 9, 2016.
March 23, 2015 Missouri Public Service Commission | Jefferson City, MO.
NRC’s 10 CFR Part 37 Program Review of Radioactive Source Security
“Status of the ReACTOR Decommissioning Program” October 7, 2016 LLW Forum Ted Smith, Project Manager Reactor Decommissioning Branch Division of Decommissioning,
Egyptian Nuclear and Radiological Regulatory Authority (ENRRA)
Office of Nuclear Material Safety and Safeguards (NMSS)
Brazil - Training and Tutoring Feedback Second Coordination Meeting
LLW Forum Meeting October 16, 2017 Alexandria, Virginia
NRC Cyber Security Regulatory Overview
Robert Kahler Branch Chief
Use Cases for Light Communications
Moving Forward From Fukushima Near-Term Task Force EP Recommendations
Research and Test Reactor Safety: The Regulatory Perspective
Decommissioning Rulemaking
NRC Update Nader Mamish, Director Emergency Preparedness Directorate
Anna Bradford, Deputy Director Division of New Reactor Licensing
Presentation transcript:

NRC Cyber Security Regulatory Program Development Background ANSI Nuclear Energy Standards Coordination Collaborative (NESCC) Meeting November 3, 2014November 3, 2014 Ralph Costello, Security SpecialistRalph Costello, Security Specialist Cyber Security DirectorateCyber Security Directorate Office of Nuclear Security & Incident ResponseOffice of Nuclear Security & Incident Response

Introduction Inter-Agency Cooperation NRC Cyber Security Requirements Consequence-Based Approach NRC Inspections Cyber Security Reporting Next Steps 2

Inter-Agency Cooperation on Cyber Security 3

NRC Requirements March 2009 Cyber Security Rule (10 CFR 73.54) – Requires that nuclear power plant licensees: “Provide high assurance that digital computer and communication systems and networks are adequately protected against cyber attacks...” “Establish, implement, and maintain a cyber security program” to protect critical digital assets (CDAs). 4

Scope of 10 CFR Safety-related and important-to-safety functions, Security functions, Emergency preparedness functions, including offsite communications, and Support systems and equipment important to safety and security. 5

Phased Implementation Interim Milestones 1-7 (completed by 12/31/2012) Cyber Security Plans Addresses key threat vectors Milestone 8 (site specific dates through 2017) Full cyber security program implementation Procedures and training Complete all design remediation actions 6

Consequence-Based Approach Graded approach – Focus NRC and licensee resources on most significant issues – Direct vs. Indirect CDAs Grouping of CDAs Development of templates and examples for efficiency and consistent implementation 7

NRC Oversight NRC inspections of Milestones 1-7 are ongoing – 39 inspections completed to date – Completion scheduled for 2015 NRC inspections of full implementation of cyber security implementation will begin in 2016 (Milestone 8) 8

Cyber Security Event Notification Rule Reporting requirements Proposed rule was issued in 2011 Public engagement – Public meetings – Public comments Final rule scheduled for

Thank You Questions Comments Discussion 10

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.