Cyberwiz-Pro™

The nuclear industry must meet stringent cyber security compliance requirements based on NRC's regulation 10CFR 73.54/NEI 08-09. Every nuclear plant must complete a full cyber security assessment as it pertains to the Critical Digital Assets within a specified time. This process can be extremely costly and burdensome to the industry. Cyberwiz-Pro from Wiznucleus which is currently in operation in some of the largest nuclear power plants reduces the complexity and cost of doing the required assessment in a timely manner.

Life-Cycle Management Support

Created by people who intimately understand nuclear power plant systems, smart grids, regulations and technology, and in partnership with some major nuclear power plant customers, Cyberwiz-Pro provides full life-cycle with extensive capabilities including Critical Digital Asset identification, systematic risk assessment, weakness management, comprehensive issue tracking, audit documentation management and administration support.

Standards Library

Cyberwiz-Pro™ comes fully loaded with all the security controls on NEI 08-09, Revision 6. In addition, any future revisions will be seamlessly implemented. For utilities looking to use Cyberwiz-Pro™ for multiple sets of standards, the software can be easily customized for those standards. Cyberwiz-Pro™ has a linear design making it extremely user friendly. Users will log on to a unique homepage and see what open items they have at any given time. Role-based users ensure that each individual is only seeing what they need which makes navigating the system that much easier.

Improving the Bottom Line

Cyberwiz-Pro™ is designed to improve your bottom-line by increasing efficiency and greatly reducing the man-hours required to perform each individual assessment. Cyberwiz-Pro™ has the unique ability to automatically inherit or exclude Critical Systems and/or Critical Digital Assets by a number of methods and includes the justification and the corresponding the documentation used for arriving at the decision.

Audit Documentation Management

With the number of revisions and changes in regulations within the nuclear industry, Cyberwiz-Pro™ is designed to capture each change that takes place and can be easily updated to match any future revisions. Any data stored within Cyberwiz-Pro™ can be easily output to a number of preset reporting options, including customized reports. Reports are generated in multiple output formats and Cyberwiz-Pro™ is designed to allow documents to be uploaded in multiple areas within the system.

Powerful Dashboards

Cyberwiz-Pro™ is designed so that management can easily get progress updates. This includes dashboards for managing CDA assessment results, CDA assessment progress, implementation dates and milestones. Additional dashboards requested by the user can be added.

Personnel Management

Cyberwiz-Pro™ is designed so that authorized users may upload each member of the Cyber Security Assessment Team (CSAT) including their roles within the team and knowledge areas. Management can also verify within Cyberwiz if appropriate training has been completed for individuals on the team. Information is easily uploaded and can be obtained from existing company data bases if desired.

Improved Workflow & Plan of Action (POA&M)

Cyberwiz-Pro™ workflow and security assessment capabilities streamline the required CDA assessments and continuing maintenance processes. The system will ensure that all controls are addressed for each Critical Digital Asset identified and then provide a workflow for obtaining all of the necessary approvals. The initial implementation of Cyberwiz-Pro™ gives an accurate view of the gaps and how to remediate those gaps in accordance with the NRC requirements.

Weakness Management

Cyberwiz-Pro™ includes features for the CSAT to examine all existing cyber security program practices (e.g., directives, policy statements, procedures, manuals) to determine any weaknesses between the existing practice and (1) the requirements of the approved Cyber Security plan and (2) the cyber security controls contained in Appendices D and E of NEI 08-09. Batch reviews determine which control may be excluded from further review with justification and reduce the level of effort in the assessment process. Copies of implementation documents may be uploaded in further support of the decisions made. When weaknesses are identified, Cyberwiz-Pro™ includes features to develop plans of action and milestones, and assignment of responsibility for completion.

Top