The Cyber Nuclear Forum (CNF) successfully held its Spring 2025 meeting online on Thursday, 27 March, convening 28 participants from 20 nuclear operating organizations. The event focused on strengthening collaboration, reviewing recent Forum developments, and exploring future priorities for cybersecurity in the nuclear sector.
Chaired by Anno Keizer (Urenco Netherlands) and co-moderated by Todd Warnell (Bruce Power, Canada), the closed-door meeting featured expert presentations on governance frameworks, supply chain security, and real-world lessons from a major cybersecurity exercise.
Highlights included:
Brian Moss (Bruce Power) presented practical approaches to managing third-party cyber risks and shared insights from international standards and best practices.
Todd Warnell outlined Bruce Power’s governance model, built on Canadian regulatory standards and a structured cybersecurity programme.
Martijn Nuijens (NRG) reported on NRG’s involvement in NATO’s Locked Shields exercise, emphasizing preparedness for large-scale cyber incidents and lessons learned from 2024.
During the session, CNF leadership outlined plans to expand international representation, enhance communications, and build stronger ties with external partners such as the IAEA, WNA, and WANO. The upcoming Autumn 2025 meeting, scheduled for 7–10 September in Amsterdam, will include site visits to the High Flux Reactor and the PALLAS construction site.
Participants highlighted priority topics for future discussions, including insider threats, AI integration, vulnerability management, and cybersecurity by design.
The meeting reaffirmed CNF’s role as a trusted, vendor-free platform for nuclear operators to share expertise, build resilience, and address evolving cyber threats collaboratively.
