Case Study: Xcel Energy Nuclear achieves enhanced cyber security and NEI 04-04 compliance with NetSPI

NetSPI Empowers Xcel Energy Nuclear to Improve IT Security

Xcel Energy Nuclear, which operates nuclear power plants in Minnesota, faced the critical challenge of managing cyber risks that could lead to limiting conditions for operation, shutdowns, or regulatory noncompliance under NEI 04-04 and NRC directives. To address these high-stakes security and compliance needs, Xcel Energy Nuclear engaged NetSPI for ongoing security assessments and development of a risk‑informed cyber security program, including NEI 04-04 planning, vulnerability assessments, and network architecture reviews.

NetSPI implemented a comprehensive solution—producing a regulatory roadmap, program charter, policies and procedures, and conducting plant- and corporate-level vulnerability tests (including PPCS reviews and unauthorized wireless detection) and pilot assessments alongside plant personnel. As a result, NetSPI helped Xcel Energy Nuclear strengthen network segmentation and controls, reduce operational risk, ensure regulatory compliance, and improve the organization’s overall security and risk‑management posture.

Xcel Energy Nuclear

Gregory Morris

Xcel Energy Nuclear