Group 1: Managing Cyber Threat
Anno Keizer (Vice Chair)
Manager, Security
URENCO
v
Agenda
1.
2.
3.
4.
5.
Introduction
Threat landscape
Achievements since NIS 2014
The NIS 2016 Working Group 1 report
Post-2016 roadmap for the future
v
1. Introduction
Assignment:
• Deepen the focus on cyber security
within the nuclear industry
• Building on the work of NIS 2014
Process:
•
•
•
•
Started work on 20 January 2015
11 teleconferences
2 face-to-face meetings
1 Working Group report
v
1. Introduction
Amir Shakarami
CASe
Chair
Anno Keizer
URENCO
Vice-Chair
Philippe Bosquet
AREVA
John Connelly
Exelon
Barry Kaufer
WNA
Pierre Legoux
WINS
Scott Hilts
Bruce Power
Ernani Peas de
Barros
Eletronuclear
Jean Luc Trolle
EDF
v
Nuclear specific
General industry
2. Threat Landscape
Stuxnet
Black Energy
Flame
DoE
2011
RSA
2012
2013
Duqu
KHNP
2014
2015
2016
Regin
Ukraine Power Grid
German Steelmill
v
2. Threat Landscape
Conclusions:
• Malware and cyber attacks certainly moved into the Industrial Control
domain
• Cyber attacks on nuclear facilities have happened
• Consequences of attacks can be substantial
• Skill set, resources and persistence of attackers is high
Thus:
• If the threat rises further, the measures should
increase as well
• Nuclear security must stay ahead of the game
v
3. Achievements since NIS 2014
The NIS 2014 Cyber Working Group proposed:
1.
2.
3.
4.
Pursue discussion with IAEA and develop guidelines
Continue to support national initiatives to define
appropriate regulations
Reinforce industry collaboration
Improve cyber security culture
v
3. Achievements since NIS 2014
• Industry participating in IAEA guidance development
- For instance, in NSS17 and also later documents on cyber
security published or in development
• Industry participating in IAEA events
- For instance, the IAEA International Conference on “Computer
Security in a Nuclear World” in 2015 drew 700 experts representing
92 countries and had several industry specific tracks
•
Industry sponsoring national and regional training courses
v
3. Achievements since NIS 2014
•
Industry participating in the WINS Nuclear Security
Academy
•
Many national activities where industry leveraged
knowledge among themselves and with
government
•
Collaboration with governments in implementing
Design Basis Threat methods for cyber security
v
3. Achievements since NIS 2014
•
Increase and strengthen relationships between
public and private cyber experts in nuclear activities
•
More focus on security architecture, security
management, security awareness and security
exercises
•
Industry promoting and engaging in the concept of
peer reviews and IPPAS missions
v
4. The NIS 2016 Working Group Report
The Working Group report concludes in
• 27 recommendations
• Recommendations also go beyond industry,
to international organizations, vendors,
academia and governments
• 5 summary points
Industry
Governments
International
organization
Academia
Vendors
v
4. The NIS 2016 Working Group
Report
WG 1 Summary Statements
1. The threat of cyber-attacks is substantial and continues to increase over time
2. Nuclear facilities are protecting sensitive nuclear material, protecting their Industrial
Control Systems and managing their controlled nuclear processes
3. Nuclear industry is developing robust defenses against cyber-attacks which goes
beyond regulatory requirements
4. Transparency will be promoted to ensure that the trust of the society is maintained
5. The nuclear industry must move from a culture of compliance to a culture of
excellence in cyber security
v
5. Post-2016 Roadmap to the Future
Collaborate with peers, industry communities and governments
Maintain companywide security awareness and focus
Ensure right architecture and management
Ensure competent cyber security staff
Incorporate nuclear security in corporate governance
Strengthen cyber security culture
Time
v