0

Full Content is available to subscribers

Subscribe/Learn More  >

The Need for Integrated Cybersecurity and Safety Training

[+] Author Affiliations
Deeksha Gupta, Holger Hoppe, Antonio Ciriello

AREVA GmbH, Erlangen, Germany

Edita Bajramovic

Friedrich-Alexander University Erlangen-Nuremberg, Erlangen, Germany

Paper No. ICONE25-67330, pp. V008T12A009; 8 pages
doi:10.1115/ICONE25-67330
From:
  • 2017 25th International Conference on Nuclear Engineering
  • Volume 8: Computational Fluid Dynamics (CFD) and Coupled Codes; Nuclear Education, Public Acceptance and Related Issues
  • Shanghai, China, July 2–6, 2017
  • Conference Sponsors: Nuclear Engineering Division
  • ISBN: 978-0-7918-5786-1
  • Copyright © 2017 by ASME

abstract

Companies involved in the nuclear energy domain, like component and platform manufacturers, system integrators and utilities, have well established yearly trainings on Nuclear Safety Culture. These trainings are typically covered as part of the annual quality assurance-related refresher trainings, introductory courses for new employees, or indoctrinations of temporary staff. Gradually, security awareness trainings are also addressed on a regular basis, typically with a focus on IT, the daily office work, test bay or construction site work environment, and some data protection and privacy-related topics. Due to emerging national nuclear regulation, steadily but surely, specialized cybersecurity trainings are foreseen for integrators and utilities.

Beyond these safety, physical security and cybersecurity specific trainings, there is a need to address the joint part of these disciplines, starting from the planning phase of a new Nuclear Power Plant (NPP). The engineers working on safety, physical protection and cybersecurity, must be aware of these interrelations to jointly elaborate a robust I&C architecture (defense-in-depth, design basis events, functional categorization and systems classification) and a resilient security architecture (security by design, security grading, zone model or infrastructure domain, security conduits, forensic readiness, Security Information and Event Management).

This paper provides more in-depth justification of when and where additional training is needed, due to the ubiquitous deployment of digital technology in new NPPs. Additionally, for existing NPPs, the benefits of conveying knowledge by training on specific interfaces between the involved disciplines, will be discussed.

Furthermore, the paper will address the need of focused training of management stakeholders, as eventually, they must agree on the residual risk. The decision-makers are in charge of facilitating the inter-disciplinary cooperation in parallel to the allocation of resources, e.g. on security certifications of products, extended modeling-based safety and security analyses and security testing coverage.

Copyright © 2017 by ASME

Figures

Tables

Interactive Graphics

Video

Country-Specific Mortality and Growth Failure in Infancy and Yound Children and Association With Material Stature

Use interactive graphics and maps to view and sort country-specific infant and early dhildhood mortality and growth failure data and their association with maternal

NOTE:
Citing articles are presented as examples only. In non-demo SCM6 implementation, integration with CrossRef’s "Cited By" API will populate this tab (http://www.crossref.org/citedby.html).

Some tools below are only available to our subscribers or users with an online account.

Related Content

Customize your page view by dragging and repositioning the boxes below.

Related eBook Content
Topic Collections

Sorry! You do not have access to this content. For assistance or to subscribe, please contact us:

  • TELEPHONE: 1-800-843-2763 (Toll-free in the USA)
  • EMAIL: asmedigitalcollection@asme.org
Sign In