**6. Conclusions**

With the continued modernization of the existing nuclear fleet and future advanced reactor designs and applications, the use of DI&C in nuclear reactors will continue to grow. Additionally, once DI&C is installed or new reactors are commissioned, maintenance and updates will occur throughout a reactor's lifetime. The fundamental CIE objective to consider cyber requirements from the onset of conceptual design provides expanded opportunities for recognizing cyber risks, thereby enabling cyber risk reduction through redesign prior to initiation of any procurement or construction activities. While CIE can positively impact design modifications in existing reactors, it may have even greater potential in improving the security posture of new reactors. Convening multidisciplinary teams will enable novel cyber solutions that otherwise would not be possible, thus minimizing cybersecurity-related costs and expensive rework later in the lifecycle. Addressing cyber concerns after installation with bolt-on solutions is arguably less effective and less efficient, especially given the fact that some SSCs may not tolerate or allow the use of security controls.

CIE is a multidisciplinary approach incorporating design and organizational principles to protect digital technology from cyber risk. The continued adoption of CIE in nuclear organizations as well as the development of curriculum in academic engineering and industry education programs furthers the goal of globally reducing nuclear cyber risk.
