UK ONR Cyber Security and Information Assurance (CSIA) for Nuclear Facilities
The UK Office for Nuclear Regulation (ONR) establishes cyber security requirements for UK civil nuclear facilities through its Security Assessment Principles (SyAPs) and Technical Assessment Guides (TAGs). ONR's CSIA expectations require nuclear licensees to implement comprehensive cyber security programmes protecting systems important to nuclear safety, security, and safeguards. Based on the graded approach proportionate to nuclear safety significance. ONR assesses cyber security as part of site licence conditions (particularly LC17 - Management Systems and LC27 - Safety Mechanisms). Aligns with NCSC guidance and IAEA NSS.
Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.
Framework Domains (4)
Architecture
| Code | Title |
|---|---|
| UKCSIA-3 | Security Architecture, Controls, Monitoring |
IR
| Code | Title |
|---|---|
| UKCSIA-4 | Incident Response and ONR Cooperation |
SNI
| Code | Title |
|---|---|
| UKCSIA-2 | SNI and Critical System Identification |
Security Plan
| Code | Title |
|---|---|
| UKCSIA-1 | Security Plan and Documentation |
Frequently Asked Questions
What is UK ONR Cyber Security and Information Assurance (CSIA) for Nuclear Facilities?
UK ONR Cyber Security and Information Assurance (CSIA) for Nuclear Facilities is a compliance framework from United Kingdom (ONR) with 4 domains and 4 controls. The UK Office for Nuclear Regulation (ONR) establishes cyber security requirements for UK civil nuclear facilities through its Security Assessment Principles (SyAPs) and Technical Assessment Guides (TAGs). ONR's CSIA expectations require nuclear licensees to implement comprehensive cyber security programmes protecting systems important to nuclear safety, security, and safeguards. Based on the graded approach proportionate to nuclear safety significance. ONR assesses cyber security as part of site licence conditions (particularly LC17 - Management Systems and LC27 - Safety Mechanisms). Aligns with NCSC guidance and IAEA NSS. It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.
How many controls does UK ONR Cyber Security and Information Assurance (CSIA) for Nuclear Facilities have?
UK ONR Cyber Security and Information Assurance (CSIA) for Nuclear Facilities has 4 controls organised across 4 domains. The largest domains are Architecture (1 controls), IR (1 controls), SNI (1 controls). Each control defines specific requirements that organisations must implement to achieve compliance.
What frameworks does UK ONR Cyber Security and Information Assurance (CSIA) for Nuclear Facilities map to?
UK ONR Cyber Security and Information Assurance (CSIA) for Nuclear Facilities does not currently have cross-framework mappings in our system. Check back as we continuously expand our mapping database.
How do I get started with UK ONR Cyber Security and Information Assurance (CSIA) for Nuclear Facilities compliance?
Start your UK ONR Cyber Security and Information Assurance (CSIA) for Nuclear Facilities compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about UK ONR Cyber Security and Information Assurance (CSIA) for Nuclear Facilities requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 4 controls and track your progress.
Start Your Compliance Journey
Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 718 frameworks.
Get Started Free →Free forever — no credit card required