NDA
Company Details
Linkedin ID:
nuclear-decommissioning-authority
Website:
Employees number:
513
Number of followers:
42,454
NAICS:
None
Industry Type:
Homepage:
www.gov.uk
IP Addresses:
0
Company ID:
NUC_1410598
Scan Status:
In-progress
Nuclear Decommissioning Authority Company CyberSecurity Posture
www.gov.uk
We're charged, on behalf of government, with the mission to clean-up the UK’s earliest nuclear sites safely, securely and cost effectively. We’re committed to overcoming the challenges of nuclear clean-up and decommissioning, leaving the 17 nuclear sites ready for their next use. We do this work with care for our people, communities and the environment, with safety, as always, our number one priority. Our 17 sites reflect the UK's nuclear legacy and include the first fleet of nuclear power stations, research centres, fuel-related facilities, and Sellafield, which has the largest radioactive inventory and the most complex facilities to decommission. Current plans indicate it will take more than 100 years to complete our core mission of nuclear clean-up and waste management. The goal is to achieve the end state at all sites by 2333. As owners of one of the largest nuclear decommissioning and remediation programmes in Europe, our main priority is to lead the work across the NDA group and develop the strategy for how it should be carried out. We also play an important role in supporting government’s aspiration for the UK to be a global leader in the civil nuclear sector. We strive to deliver best value for the UK taxpayer by focusing on reducing the highest hazards and risks, while ensuring safe, secure, and environmentally responsible operations at our sites.
Nuclear Decommissioning Authority A.I CyberSecurity Scoring
NDA Risk Score (AI oriented)Between 750 and 799
NDA
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
NDA Global Score (TPRM)XXXX
NDA
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
NDA Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
NDA Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for NDA
Incidents vs Government Relations Industry Average (This Year)
No incidents recorded for Nuclear Decommissioning Authority in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Nuclear Decommissioning Authority in 2025.
Incident Types NDA vs Government Relations Industry Avg (This Year)
No incidents recorded for Nuclear Decommissioning Authority in 2025.
Incident History — NDA (X = Date, Y = Severity)
NDA cyber incidents detection timeline including parent company and subsidiaries
NDA Company Subsidiaries
We're charged, on behalf of government, with the mission to clean-up the UK’s earliest nuclear sites safely, securely and cost effectively. We’re committed to overcoming the challenges of nuclear clean-up and decommissioning, leaving the 17 nuclear sites ready for their next use. We do this work with care for our people, communities and the environment, with safety, as always, our number one priority. Our 17 sites reflect the UK's nuclear legacy and include the first fleet of nuclear power stations, research centres, fuel-related facilities, and Sellafield, which has the largest radioactive inventory and the most complex facilities to decommission. Current plans indicate it will take more than 100 years to complete our core mission of nuclear clean-up and waste management. The goal is to achieve the end state at all sites by 2333. As owners of one of the largest nuclear decommissioning and remediation programmes in Europe, our main priority is to lead the work across the NDA group and develop the strategy for how it should be carried out. We also play an important role in supporting government’s aspiration for the UK to be a global leader in the civil nuclear sector. We strive to deliver best value for the UK taxpayer by focusing on reducing the highest hazards and risks, while ensuring safe, secure, and environmentally responsible operations at our sites.
Loading...
NDA Similar Companies
Torres Consulting & Law Group
Torres Consulting and Law Group (TCLG) partners with clients – each with a unique set of goals and needs – throughout the western United States. Our dynamic team possesses more than 100 years of combined experience in government relations, grassroots outreach, public relations, and public service at
Association of Arkansas Counties
The Association of Arkansas Counties serves as the official voice of county government at the state Capitol, and serves as the official spokesperson and liaison of Arkansas counties in dealing with state and federal agencies. The Association of Arkansas Counties supports and promotes the idea tha
Strategic Partnerships, Inc.
Strategic Partnerships, Inc. (SPI) is a nationally recognized leader in public sector business development and procurement consulting. Since 1995, SPI's team of 200+ former government executives have provided unmatched expertise and a comprehensive suite of services to help businesses of all sizes
Lighthouse Public Affairs
Founded in 2010, Lighthouse Public Affairs is the preeminent state-wide public affairs consultancy in California. With offices in San Francisco, Sacramento, Los Angeles, Oakland, Silicon Valley and Marin, our team is comprised with seasoned professionals from a multitude of disciplines, and a roster
Hodes & Landy
Hodes & Landy is a full-service government affairs firm, located steps from the New York State Capitol with a proven track record of high quality ethical representation, and exceptional results. Since 1992, Hodes & Landy has employed a unique, hands-on approach to consulting and lobbying. We prov
RFP Solutions
RFP Solutions Inc. provides Canadian public sector organizations with trusted Request-for- Proposal (RFP) development services, expert-systems, consulting and training. RFP Solutions Inc. works exclusively for the public sector, and is an employee-owned firm based in Ottawa, Canada. We love procure
.png)
NDA CyberSecurity News
February 28, 2025 08:00 AM
Why Decommissioned Nuclear Sites Must Stay on the Security Agenda
Securing plants during decommissioning is crucial to national security and public safety, as it helps prevent the risk of a nuclear disaster.
February 20, 2025 08:00 AM
Watchdog approves Sellafield physical security, but warns about cyber
Cumbrian nuclear facility Sellafield is still under scrutiny for cyber security problems, despite the regulator's clean bill of health for its physical...
December 05, 2024 08:00 AM
UK government launches nuclear cybersecurity centre months after Sellafield fine for data breaches
The UK Nuclear Decommissioning Authority has launched a cybersecurity centre near the Sellafield nuclear facility in Cumbria, months after the plant was fined.
November 26, 2024 08:00 AM
UK’s NDA launches cyber facility to safeguard nuclear sector against evolving threats
The U.K.'s Nuclear Decommissioning Authority (NDA) group announced the launch of a specialized cyber facility aimed at boosting...
November 26, 2024 08:00 AM
NDA opens cyber security hub near Sellafield to tackle IT threats
A nuclear body has launched a cyber security hub to help protect itself from IT threats. The Nuclear Decommissioning Authority (NDA) opened...
November 26, 2024 08:00 AM
Nuclear Decommissioning Authority opens cyber security facility
Nuclear Decommissioning Authority opens cyber security facility · Topics · Strong systems. Warren Cain, superintending inspector at the Office...
November 26, 2024 08:00 AM
Nuclear decommissioning sector faces up to cyber threats
The Nuclear Decommissioning Authority (NDA) has launched a cyber facility to help the sector address cyber threats and to accelerate collaboration and...
November 26, 2024 08:00 AM
Sellafield operator opens dedicated cyber centre
The UK's Nuclear Decommissioning Authority has opened a cyber security centre spanning its activities across the nuclear sector.
November 25, 2024 08:00 AM
NDA launches cutting-edge facility to boost nuclear cybersecurity
The Nuclear Decommissioning Authority (NDA) has unveiled the Group Cyberspace Collaboration Centre (GCCC), a state-of-the-art facility aimed at revolutionising...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
NDA CyberSecurity History Information
Official Website of Nuclear Decommissioning Authority
The official website of Nuclear Decommissioning Authority is http://www.gov.uk/nda.
Nuclear Decommissioning Authority’s AI-Generated Cybersecurity Score
According to Rankiteo, Nuclear Decommissioning Authority’s AI-generated cybersecurity score is 759, reflecting their Fair security posture.
How many security badges does Nuclear Decommissioning Authority’ have ?
According to Rankiteo, Nuclear Decommissioning Authority currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Nuclear Decommissioning Authority have SOC 2 Type 1 certification ?
According to Rankiteo, Nuclear Decommissioning Authority is not certified under SOC 2 Type 1.
Does Nuclear Decommissioning Authority have SOC 2 Type 2 certification ?
According to Rankiteo, Nuclear Decommissioning Authority does not hold a SOC 2 Type 2 certification.
Does Nuclear Decommissioning Authority comply with GDPR ?
According to Rankiteo, Nuclear Decommissioning Authority is not listed as GDPR compliant.
Does Nuclear Decommissioning Authority have PCI DSS certification ?
According to Rankiteo, Nuclear Decommissioning Authority does not currently maintain PCI DSS compliance.
Does Nuclear Decommissioning Authority comply with HIPAA ?
According to Rankiteo, Nuclear Decommissioning Authority is not compliant with HIPAA regulations.
Does Nuclear Decommissioning Authority have ISO 27001 certification ?
According to Rankiteo,Nuclear Decommissioning Authority is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Nuclear Decommissioning Authority
Nuclear Decommissioning Authority operates primarily in the Government Relations industry.
Number of Employees at Nuclear Decommissioning Authority
Nuclear Decommissioning Authority employs approximately 513 people worldwide.
Subsidiaries Owned by Nuclear Decommissioning Authority
Nuclear Decommissioning Authority presently has no subsidiaries across any sectors.
Nuclear Decommissioning Authority’s LinkedIn Followers
Nuclear Decommissioning Authority’s official LinkedIn profile has approximately 42,454 followers.
NAICS Classification of Nuclear Decommissioning Authority
Nuclear Decommissioning Authority is classified under the NAICS code None, which corresponds to Others.
Nuclear Decommissioning Authority’s Presence on Crunchbase
No, Nuclear Decommissioning Authority does not have a profile on Crunchbase.
Nuclear Decommissioning Authority’s Presence on LinkedIn
Yes, Nuclear Decommissioning Authority maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/nuclear-decommissioning-authority.
Cybersecurity Incidents Involving Nuclear Decommissioning Authority
As of December 17, 2025, Rankiteo reports that Nuclear Decommissioning Authority has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Nuclear Decommissioning Authority has an estimated 420 peer or competitor companies worldwide.
Nuclear Decommissioning Authority CyberSecurity History Information
How many cyber incidents has Nuclear Decommissioning Authority faced ?
Total Incidents: According to Rankiteo, Nuclear Decommissioning Authority has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Nuclear Decommissioning Authority ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Nagios XI versions prior to 2026R1.1 are vulnerable to local privilege escalation due to an unsafe interaction between sudo permissions and application file permissions. A user‑accessible maintenance script may be executed as root via sudo and includes an application file that is writable by a lower‑privileged user. A local attacker with access to the application account can modify this file to introduce malicious code, which is then executed with elevated privileges when the script is run. Successful exploitation results in arbitrary code execution as the root user.
Risk Information
cvss4
Base: 8.6
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Out of bounds read and write in V8 in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Description
Use after free in WebGPU in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Description
SIPGO is a library for writing SIP services in the GO language. Starting in version 0.3.0 and prior to version 1.0.0-alpha-1, a nil pointer dereference vulnerability is in the SIPGO library's `NewResponseFromRequest` function that affects all normal SIP operations. The vulnerability allows remote attackers to crash any SIP application by sending a single malformed SIP request without a To header. The vulnerability occurs when SIP message parsing succeeds for a request missing the To header, but the response creation code assumes the To header exists without proper nil checks. This affects routine operations like call setup, authentication, and message handling - not just error cases. This vulnerability affects all SIP applications using the sipgo library, not just specific configurations or edge cases, as long as they make use of the `NewResponseFromRequest` function. Version 1.0.0-alpha-1 contains a patch for the issue.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
GLPI is a free asset and IT management software package. Starting in version 9.1.0 and prior to version 10.0.21, an unauthorized user with an API access can read all knowledge base entries. Users should upgrade to 10.0.21 to receive a patch.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=nuclear-decommissioning-authority' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
