Abstract
The consequences from a blended cyber-physical terrorist attack on a nuclear power plant are potentially catastrophic. Sabotage of the plant and subsequent use of radiological materials can potentially lead to blackouts, deaths, and injuries and even a release of radiological materials. This threat continues to evolve in sophistication and complexity and is outpacing the ability and resources of governments to anticipate risks and to protect their critical infrastructure and the public from harm. Policymakers are working to keep up with the rapid onset of these threats to reinforce the resilience of critical infrastructure. Cyber vulnerabilities including insider threats are also evolving, with cyberattacks on nuclear facilities the tip of the iceberg as more sophisticated advanced persistent threats develop.
This paper suggests governments look beyond regulations and policy directives to harness the power and energy of the market to incentivize operators to voluntarily adopt security measures beyond regulatory requirements. Good organizational governance is important and necessary to secure critical infrastructure including nuclear facilities and increasingly can be rewarded by the market. The definition of what is good organizational governance matters to investors, lenders, insurers, regulators, and the public. Is the organization going to be able to function effectively as an enterprise and provide a return to investors, pay back its loans, protect its workers and community, including the environment? In the nuclear field, the stakes can be high—with stakeholders depending on a stable baseload electric supply without safety or security incidents, especially of a radio-logical nature.
This article documents findings from a multi-year project to identify incentives for nuclear security beyond regulatory minimums, with a focus on nuclear power plants. We assessed the importance of standards and developed a “Good Governance Template” to support owners/managers in obtaining benefits and reducing potential liabilities. We found that market incentives are developing in areas such as insurance, credit, and other rating systems to support the development of good governance, including incentives for companies to demonstrate due care in the management of risks, especially cyber risks. Building a business case for nuclear security based on these incentives is an important step forward in securing our nuclear future, especially in terms of cyber risks.
Read the full article in the Journal of Critical Infrastructure Policy.
Emerging Technology
Share:
This article was originally published in the Journal of Critical Infrastructure Policy
Abstract
The consequences from a blended cyber-physical terrorist attack on a nuclear power plant are potentially catastrophic. Sabotage of the plant and subsequent use of radiological materials can potentially lead to blackouts, deaths, and injuries and even a release of radiological materials. This threat continues to evolve in sophistication and complexity and is outpacing the ability and resources of governments to anticipate risks and to protect their critical infrastructure and the public from harm. Policymakers are working to keep up with the rapid onset of these threats to reinforce the resilience of critical infrastructure. Cyber vulnerabilities including insider threats are also evolving, with cyberattacks on nuclear facilities the tip of the iceberg as more sophisticated advanced persistent threats develop.
This paper suggests governments look beyond regulations and policy directives to harness the power and energy of the market to incentivize operators to voluntarily adopt security measures beyond regulatory requirements. Good organizational governance is important and necessary to secure critical infrastructure including nuclear facilities and increasingly can be rewarded by the market. The definition of what is good organizational governance matters to investors, lenders, insurers, regulators, and the public. Is the organization going to be able to function effectively as an enterprise and provide a return to investors, pay back its loans, protect its workers and community, including the environment? In the nuclear field, the stakes can be high—with stakeholders depending on a stable baseload electric supply without safety or security incidents, especially of a radio-logical nature.
This article documents findings from a multi-year project to identify incentives for nuclear security beyond regulatory minimums, with a focus on nuclear power plants. We assessed the importance of standards and developed a “Good Governance Template” to support owners/managers in obtaining benefits and reducing potential liabilities. We found that market incentives are developing in areas such as insurance, credit, and other rating systems to support the development of good governance, including incentives for companies to demonstrate due care in the management of risks, especially cyber risks. Building a business case for nuclear security based on these incentives is an important step forward in securing our nuclear future, especially in terms of cyber risks.
Read the full article in the Journal of Critical Infrastructure Policy.
Recent & Related
Parallel Talks with Israel are Reshaping Syria-Lebanon Relations
The Arab Maghreb Union Didn’t Stall. It Collapsed.
The Iran War is a Big Issue Among Many at the 2026 NPT RevCon
What the Red Sea Conflict Between the U.S. and the Houthis Taught Iran
Iran Conflict Hits Foundations of Gulf Economies
Can Services Replace Manufacturing in Developing Economies?
The Trump-Xi Summit Could Be a Positive Paradigm Shift
Trump–Xi Summit: Expert Perspectives on the Stakes and Strategic Outlook
High Hopes in Beijing About Trump-Xi Summit
Southward Creep: The Sahel Insurgency Reaches Coastal West Africa
Balancing Export-Led Growth and Labor Protections in Morocco
Mali Attacks: Aggravating the Sahel Security Crisis
การทำเหมืองแร่โดยไม่ได้รับการควบคุมตามแนวแม่น้ำในแผ่นดินใหญ่ของเอเชียตะวันออกเฉียงใต้
ການຂຸດຄົ້ນ-ປຸງແຕ່ງແຮ່ທີ່ບໍ່ຖືກຕ້ອງ ຢູ່ຕາມແມ່ນໍ້າສາຍຕ່າງໆ ຢູ່ແຜ່ນດິນໃຫຍ່ອາຊີຕາເວັນອອກສຽງໃຕ້ Unregulated Mining Along Rivers in Mainland Southeast Asia (Lao Language)
Current Geopolitics Shift Deep-Sea Mining Debates
Navigating Seabed Mining in the Cook Islands: A Conversation with John Parianos
การทำเหมืองแร่โดยไม่ได้รับการควบคุมตามแนวแม่น้ำในแผ่นดินใหญ่ของเอเชียตะวันออกเฉียงใต้
Mining in Mainland Southeast Asia – River Basins Dashboard
Unregulated Mining Along Rivers in Mainland Southeast Asia
Trump’s Critical Minerals Search in Africa Won’t Tip the Scales Against China
The Impact of Artificial Intelligence on Violence Against Women and Girls
Implications of Chinese Influence Operations for South Korea and the US-ROK Alliance
Find an Expert
Home to more than 100 scholars and global affiliates, the Stimson Center is proud to be a magnet for the world’s leading experts on the most pressing foreign policy and national security issues of our time. Explore our experts and their work.