Effective Regulation of the UK’s Critical National Infrastructure (CNI): Transforming Cyber Security & Information Assurance (CS&IA) across the civil nuclear sector.

No ratings

Presented at AnnualCyberSecurityExecForum 2016 by

Robert Orr

Leadership, maturity and agility; creating a cyber security risk aware culture; continuous improvement planning; robust resilience (detect, deter, defend, respond, recover) ‘Mature’ regulation’: the ONR CNS model for effective, efficient, enabling regulation; our CS&IA regulatory framework (enable, influence, assure, ensure) Regulatory expectations: transformation through outcome focussed regulation (national objectives, requirements, standards, maturity models and recognised good practices); regulatory tools (CS&IA plans; assurance inspections; ‘surveillance’ – periodic and annual reporting; interventions and enforcement)