A joint strategy between government, civil nuclear industry and the regulator, setting out how the UK’s civil nuclear sector aims to manage and mitigate evolving cyber risks over the next 5 years.

The 2022 Civil Nuclear Cyber Security Strategy builds on its predecessor strategy, the 2017 Civil Nuclear Cyber Security Strategy, and the 2022 National Cyber Strategy to further strengthen the cyber security posture of the UK civil nuclear sector.

It outlines 4 key objectives for the sector to work together to achieve by 2026:

  • the sector appropriately prioritises cyber security as part of a holistic risk management approach underpinned by a common risk understanding, and outcome-focused regulation
  • the sector and its supply chain takes proactive action to mitigate cyber risks in the face of evolving threats, legacy challenges and adoption of new technologies
  • the sector enhances its resilience by preparing for, and responding collaboratively to cyber incidents, minimising impacts and recovery time
  • the sector collaborates to increase cyber maturity, develop cyber skills and promote a positive security culture