The International Conference on Computer Security in the Nuclear World: Securing the Future is taking place in Vienna from 11 to 15 May. (Photo: D.Calma/IAEA).
While gates and guards have long been used to protect nuclear facilities from sabotage or malicious actors, the growing reliance on digital systems calls for more vigilance to identifying vulnerabilities and cyber risks.
From 11 to 15 May 2026, the International Conference on Computer Security in the Nuclear World: Securing the Future (CyberCon26) brings together over 500 experts to discuss emerging technologies in computer security and their potential impact on the security of critical nuclear infrastructure.
IAEA Director General Rafael Mariano Grossi highlighted in a video address to the conference that information and computer security is a fundamental pillar of nuclear safety and security. Protecting information assets and computer-based systems is an essential complement to the physical protection of materials and facilities, while security by design appears to be the best approach to mitigate cyber threats.
"The rapid pace of digitalization and emerging technologies makes our conversation this week not only relevant, but vital," said Karine Herviou, IAEA Deputy Director General and Head of the Department of Nuclear Safety and Security, in her opening remarks. "The Agency remains committed to ensuring that digital innovation strengthens and sustains the highest standards of nuclear safety and security worldwide."
The week-long conference features more than 30 technical sessions, panel discussions and side events, as well as interactive activities such as a cyber village and cyber security escape rooms that enrich the conference learning experience.
"The intersection of nuclear security and digital technologies demands constant vigilance, innovation and global cooperation," said Isolda Costa, General Director of Brazil's Nuclear and Energy Research Institute and conference Co-President. "Participants will benefit from a rich programme that highlights emerging risks, advanced protective measures and real-world case studies. By fostering collaboration across disciplines and borders, we are collectively reinforcing the foundations of nuclear safety and security in the digital age," she added.
"The threat of cyber-attacks is evolving in both scale and complexity, yet it remains largely invisible. This inherent nature makes it challenging to create a strong sense of urgency," said Yosuke Naoi, Commissioner of the Japan Atomic Energy Commission and conference Co-President. "CyberCon26 provides a global forum for sharing information on these rapidly changing threats and the latest countermeasure technologies. We hope that the participants will gain valuable insights, leading to heightened threat awareness and the strengthening of computer security across their facilities and respective countries."
Side events, poster sessions and a technical exhibition complement the main programme, showcasing good practices, research outcomes and new tools.
The IAEA is hosting an international conference this week on preventing, detecting and responding to cyber threats targeting nuclear facilities and nuclear and other radioactive material. (Photo: D. Calma/ IAEA).
"The importance of security by design in preventing and mitigating cyber threats to materials and facilities - including advanced reactors - is one of the main themes of CyberCon26," said Trent Nelson, the conference's Scientific Secretary. "Scenario-based video demonstrations focusing on protection, detection and computer security incident response will help keep participants engaged and further enhance awareness of cyber risks."
International Collaboration on Computer Security
The conference kicks off with the launch of an Information and Computer Security Community of Practice, a platform to advance international collaboration on information and computer security. This expert-driven forum will bring together countries, international organizations, industry, academia, operators, regulators and subject matter experts to exchange knowledge, good practices and lessons learned.
Throughout the week, technical sessions will explore specialized themes, including managing risks and mitigating vulnerabilities in supply chains, regulatory frameworks, insider threats and cyber-enabled sabotage.
The conference also addresses capacity building in computer security, with the aim of identifying opportunities for joint initiatives and capacity-building programmes. Sessions on enhancing computer security through exercises and drills, security culture and attracting and retaining skilled computer security staff are scheduled throughout the week.
