April 8, 2015
Staff at the Nuclear Regulatory Commission (NRC) should expeditiously complete and implement cybersecurity rulemaking for nuclear fuel-cycle facilities, the regulatory agency’s commissioners have ordered.
In a March 24 agency memorandum to Mark Satorius, NRC executive director for operations, the commission disapproved the one option, which was the staff’s recommendation, to issue a security order to fuel cycle facilities followed by rulemaking. It instead approved an option to initiate cybersecurity rulemaking for fuel cycle facilities. It also called on staff to consider an implementation period of 18 months after approval of a final rule—not the typical three-year period.