Changes to Nuclear Cyber Security in Canada with the CSA N290.7:21 Standard

Cyber Security for nuclear reactors in Canada is governed by CSA N290.7-14, Cyber security for nuclear power plants and small reactor facilities. This Standard has been included in the licensing requirements for applicable facilities. In October 2021, CSA released a new version of the Standard CSA N290.7:21, Cyber security for nuclear facilities. It is anticipated that all new reactor licenses granted will require compliance with this revised Standard, which will impact the current state of existing facilities and considerations in design of new reactor facilities, particularly SMRs. The most significant change associated with the new Standard is the changes to requirements associated with network architecture, specifically the requirements for the development of logically and physically segregated zones and the implementation of network monitoring. This paper outlines these changes and some of the challenges Alithya has encountered with implementation in a remote, cloud based digital landscape.