Question 1

What are the key differences between IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) and IAIS Insurance Core Principles (ICPs)?

Accepted Answer

IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) has 11 controls across its framework, while IAIS Insurance Core Principles (ICPs) covers 47 controls. Direct mapping analysis identifies 4 overlapping controls (36% coverage). The frameworks diverge most significantly in IAEA NSS-17 Assurance + Regulator + Improvement, where 1 IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) controls have no direct IAIS Insurance Core Principles (ICPs) equivalent.

Question 2

How many controls map between IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) and IAIS Insurance Core Principles (ICPs)?

Accepted Answer

Of 11 total IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) controls, 4 map directly to IAIS Insurance Core Principles (ICPs) controls — representing 36% coverage. The remaining 7 controls represent compliance gaps requiring additional documentation or compensating controls to satisfy both frameworks simultaneously.

Question 3

What are the compliance gaps when mapping IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) to IAIS Insurance Core Principles (ICPs)?

Accepted Answer

7 IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) controls have no direct equivalent in IAIS Insurance Core Principles (ICPs). The highest concentration of gaps is in IAEA NSS-17 Assurance + Regulator + Improvement with 1 unmapped controls. These gaps represent areas where additional controls, policies, or documentation must be created to achieve compliance with both frameworks.

Question 4

Which control domains have the most gaps between IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) and IAIS Insurance Core Principles (ICPs)?

Accepted Answer

The domain with the highest gap count is IAEA NSS-17 Assurance + Regulator + Improvement (1 gaps). Export the full domain-by-domain gap breakdown via the Professional tier to generate a prioritised remediation roadmap.

IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1)vsIAIS Insurance Core Principles (ICPs)

Control Mappings

IAEA NSS-17 Access Control(1 mappings)

IAEA NSS-17 Architecture + Zones(1 mappings)

IAEA NSS-17 Detect + IR + Recovery(1 mappings)

IAEA NSS-17 Supply Chain + Third Party(1 mappings)

Related Comparisons

Other IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) comparisons

Other IAIS Insurance Core Principles (ICPs) comparisons

Stop Paying Consultants to Read Spreadsheets

Popular framework comparisons

What are the key differences between IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) and IAIS Insurance Core Principles (ICPs)?

How many controls map between IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) and IAIS Insurance Core Principles (ICPs)?

What are the compliance gaps when mapping IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) to IAIS Insurance Core Principles (ICPs)?

Which control domains have the most gaps between IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1) and IAIS Insurance Core Principles (ICPs)?

Related Resources