AIKEN, S.C. – Savannah River Nuclear Solutions (SRNS) Information Technology (IT) is strengthening national security and advancing digital resilience across the Department of Energy (DOE) and National Nuclear Security Administration (NNSA) through the work of its Enterprise Mission Support (EMS) and Enterprise Cyber Security (ECS) teams. Together, they form the backbone of secure cybersecurity operations at the Savannah River Site (SRS), ensuring the protection and reliability of IT systems.
The cybersecurity landscape continues to grow in sophistication, with threats ranging from nation‑state actors and insider threats to financially motivated cybercriminals. These evolving challenges place significant responsibility on organizations like SRNS to remain vigilant, proactive and innovative.
EMS and ECS operate as a unified defense force, supporting the enterprise by safeguarding the systems and infrastructure that underpin nuclear security, environmental stewardship and mission-essential operations.
Working closely with federal partners and other Labs, Plants, and Sites (LPS), SRNS IT prioritizes joint problem‑solving and continuous improvement to help harmonize best practices and accelerate adoption of modern technologies and security enhancements.
“We work closely with other LPSs to adopt new technologies, strengthen shared defenses, and continuously innovate— all while staying vigilant against emerging threats,” said Tracy Waller, Director of EMS.
EMS is responsible for safeguarding and managing OT and National Security Systems (NSS), including classified environments. Using the policies and baselines established by ECS, EMS ensures these systems remain compliant and continuously monitored against threats.
In fiscal year (FY) 2025, EMS achieved a significant milestone with the consolidation of three classified networks into the unified One Red Network. This multi-year project created a common boundary and infrastructure, improving efficiency and strengthening the overall security posture for mission-critical systems.
“The One Red Network initiative represents a paradigm shift in how we run classified IT operations and security programs at SRS,” said Alex Taylor, SRNS Defense Program Computing Assurance Technical Lead. “Our progress to date lays the foundation for more secure, resilient and scalable capabilities that will support emerging mission needs for years to come.”
ECS oversees cybersecurity for IT, OT, and NSS systems and leads efforts such as risk management, security authorization, policy development, threat intelligence, incident response, penetration testing, intrusion detection and digital forensics.
In FY25, ECS received commendation from DOE’s Office of Enterprise Assessment (EA‑60) following an independent evaluation of cybersecurity operations. The review included an in‑depth analysis of the Site’s General Support Systems, testing the team’s ability to detect, respond to and contain simulated cyber threats.
“We significantly matured our risk management processes, and the positive engagement throughout the EA-60 assessment reflected our preparation and professionalism,” said Jessica Maples, SRNS Cyber Assurance Manager. “Having no findings during an audit of this magnitude reinforces the strength of our cybersecurity framework and validates our commitment to excellence.”
The teams anticipate the challenges posed by emerging technologies, including advances in encryption, quantum‑resistant threats, AI‑driven attack techniques and misinformation campaigns.
“ECS has not only evaluated attacks and threats related to SRS-specific vendors and supply chain concerns, but we’ve also been able to share those findings with other LPSs to maintain a collective security stance across the Complex,” said Andrew Bohman, Cyber Defense Manager, Detection and Response.
SRNS continues to invest in modern defenses and adopt forward‑leaning strategies to ensure system resilience, including:
- Accelerating adoption of cloud and industry leading incident‑response technologies
- Deploying enhanced application visibility tools to mitigate software infrastructure vulnerabilities
- Conducting annual Zero Trust maturity assessments to guide security investments
- Upgrading legacy systems to current cybersecurity baselines
“We must work together to achieve our goal of securing and defending SRNS systems,” said Tim Whisnant, ECS Director, Chief Information Security Officer. “Our success lies in the ability to learn and adapt to technological demands while being cognizant of emerging threats. Together, EMS and ECS will advance DOE and NNSA missions while safeguarding SRS through applied cybersecurity protections.”
Savannah River Nuclear Solutions, a Fluor and HII partnership company, is responsible for the management and operations of the Department of Energy’s Savannah River Site, located near Aiken, South Carolina.
SRNS-2026-1736