News on the ISO 19443 standard version 2018 - Nuclear safety management systems (NSMS) - requirements

22/05/2025

The ISO 19443 version 2018 standard is the first version (edition) of this standard for nuclear safety energy management systems.

Choosing to apply a nuclear safety energy management system allows you to:

reinforce nuclear safety
prevent accidents and mitigate consequences
establish and foster a strong safety culture

The requirements of the ISO 19443 standard version 2018

ISO 19443 quiz requirements version 2018

PQB T 28v18 Readiness ISO 19443 version 2018 training and its free demo without registration soon

PQB T 48v18 Internal Audit ISO 19443 version 2018 training and its free demo without registration soon

The PQB T 88v18 ISO 19443 training package version 2018 soon

1. SPECIFIC NUCLEAR SAFETY REQUIREMENTS

emphasis on nuclear safety culture:
- the establishment, implementation, and maintenance of a strong nuclear safety culture throughout the organization. This goes beyond general leadership commitment to quality and requires a deep-seated organizational value system where safety is paramount
- behavioral aspects: the standard addresses not just processes, but also the behaviors and attitudes of individuals that contribute to safety
determination of ITNS (Important to Nuclear Safety) items and activities:
- the organization must clearly identify which of its products, services, processes, and activities are considered ITNS. This is a critical step as these items will be subject to heightened controls
- graded approach: while not explicitly a "requirement" in itself, the standard implicitly supports a "graded approach" to quality management, where the rigor of controls is proportional to the safety significance of the item or activity
enhanced risk approach:
- nuclear-specific risks: while ISO 9001 requires risk-approach, ISO 19443 demands a more stringent and comprehensive analysis of risks specifically related to nuclear safety, including potential consequences of failure of ITNS items
- worst-case scenarios: risk analysis often needs to consider worst-case scenarios and their impact on nuclear safety
stricter control of documentation:
- enhanced traceability: there are more stringent requirements for traceability of products, materials, processes, and personnel qualifications throughout the entire lifecycle, from design to decommissioning. This includes detailed record-keeping
- authenticity and integrity: emphasizes the need to ensure the authenticity and integrity of documentation, given the long operational life of nuclear facilities
competence and qualification:
- specific nuclear competencies: ISO 19443 requires that personnel performing ITNS activities possess specific competencies and qualifications relevant to nuclear safety
- maintenance of qualification: there is a strong emphasis on maintaining the qualification of personnel over time through ongoing training and evaluation
control of externally provided processes, products, and services:
- rigorous supplier evaluation and qualification: the standard places a much higher emphasis on the rigorous evaluation, selection, and ongoing monitoring of suppliers of ITNS products and services. This includes comprehensive audits and assessments
- flow-down of requirements: specific requirements must be effectively flowed down to all levels of the supply chain to ensure that even sub-tier suppliers comply with nuclear safety standards
- counterfeit, fraudulent, and suspect Items (CFSI) control: a critical and unique requirement in ISO 19443 is the explicit provision for preventing, detecting, and controlling counterfeit, fraudulent, and suspect items in the supply chain. This is vital to prevent the use of substandard components that could compromise safety
operational control:
- specific process controls: requires more detailed and robust controls for operational processes, especially those related to ITNS, to ensure consistent and safe execution
- configuration management: implicitly or explicitly, a strong emphasis on configuration management to ensure that the physical configuration of the plant and its components matches the documented design
nonconformity and corrective actions:
- prompt reporting: nonconformities related to nuclear safety must be reported without undue delay to relevant management levels and, as appropriate, to the customer and regulatory bodies
- root cause analysis: a more in-depth and systematic approach to root cause analysis for nonconformities is expected to prevent recurrence
- containment of effects: emphasis on taking immediate action to contain the effect of a nonconformity on other processes or products
design and development:
- verification and validation by independent personnel: requires that design and development verification and validation testing be performed by competent personnel different from those who performed the original design
- use of commercial grade items (CGI) as ITNS: provides requirements for how commercial grade items can be dedicated for use as ITNS items, a specific practice in the nuclear industry

2. ARTICLES ARE 10 ACCORDING TO HIGH LEVEL STRUCTURE:

Scope
Normative references
Terms and definitions
Context of the organization
Leadership
Planning
Support
Operation
Performance evaluation
Improvement

3. PROCEDURES

procedures (documented):
- scope (§ 4.3)
- quality manual (§ 4.4.3)
- quality policy (§ 5.2)
- risk management (§ 6.1)
- ITNS items and activities (§ 6.1.3)
- graded approach (§ 6.1.4)
- quality objectives (§ 6.2.1)
- processes (§ 8.1)
- design and development controls (§ 8.3.4)
- external providers (§ 8.4.1)
- nonconforming outputs (§ 8.7)

4. RECORDS

recordings:
- issues (§ 4.1)
- stakeholders (§ 4.2)
- processes (§ 4.4.2)
- job descriptions (§ 5.3)
- risks (§ 6.1)
- ITNS items and activities (§ 6.1.3)
- graded approach (§ 6.1.4)
- monitoring and measuring resources (§ 7.1.5.1)
- action plans (§ 7.1.5.2)
- competence (§ 7.2)
- communication (§ 7.4)
- list of documents (§ 7.5.1)
- documents of external origin (§ 7.5.3.2)
- protection (§ 7.5.3.2)
- processes (§ 8.1)
- conformity of products and services (§ 8.1)
- customer requirements (§ 8.2.3.1)
- design and development activities (§ 8.3.1)
- design and development requirements (§ 8.3.2)
- design and development inputs (§ 8.3.3)
- design and development controls (§ 8.3.4)
- design and development testing (§ 8.3.4.1)
- design and development outputs (§ 8.3.5)
- design and development changes (§ 8.3.6)
- external providers' documents (§ 8.4.1)
- monitoring and measuring activities (§ 8.5.1.2)
- identification and traceability (§ 8.5.2)
- property belongong to customers or external providers (§ 8.5.3)
- control of changes (§ 8.5.6)
- release of products and services (§ 8.6)
- inspection results (§ 9.1.1)
- audit program (§ 9.2)
- audit results (§ 9.2)
- management review results (§ 9.3.3)
- nature of nonconformities (§ 10.2.2)
- results of corrective actions (§ 10.2.2)

5. PROCESSES

process:
- design and develop (§ 8.3.1)
- realize products and services by external provider (§ 8.4.1)
- produce (§ 8.5.1)
- audit internally (§ 9.2)

6. POLICY

policy:
- quality policy (§ 5.2)

7. THE VERB SHALL IS USED 217 TIMES

8. DETAILS OF ARTICLES AND PARAGRAPHS

1 Scope

2 Normative references

3 Terms and definitions

4 Context of the organization

4.1 Understanding the organization and its context

4.2 Understanding the needs and expectations of interested parties

4.3 Determining the scope of the quality management system

4.4 Quality management system and its processes

5 Leadership

5.1 Leadership and commitment

5.1.1 General

5.1.2 Custoemr focus

5.1.3 Nuclear safety culture

5.2 Policy

5.2.1 Establishing the quality policy

5.2.2 Communicating the quality policy

5.3 Organizational roles, responsibilities and authorities

6 Planning

6.1 Actions to address risks and opportunities

6.1.3 Determination of ITNS items and activities

6.1.4 Graded approach to the application of quality requirements

6.2 Quality objectives and planning to achieve them

6.3 Energy review

7 Support

7.1 Resources

7.1.1 General

7.1.2 People

7.1.3 Infrastructure

7.1.4 Environment for the operation of processes

7.1.5 Monitoring and measuring resources

7.1.6 Organizational knowledge

7.2 Competence

7.3 Awareness

7.4 Communication

7.5 Documented information

7.5.1 General

7.5.2 Creating and updating

7.5.3 Control of documented information

8 Operation

8.1 Operational planning and control

8.1.1 Provisions for counterfeit, fraudulent or suspect (CFS) items

8.2 Requirements for products and services

8.2.1 Customer communication

8.2.2 Determination of requirements related for products and services

8.2.3 Review of the requirements for products and services

8.2.4 Changes to requirements for products and services

8.3 Design and development of products and services

8.3.1 General.Design

8.3.2 Design and development planning

8.3.3 Design and development inputs

8.3.4 Design and development controls

8.3.5 Design and development outputs

8.3.6 Design and development changes

8.4 Control of externally provided processes, products and services

8.4.1 General

8.4.2 Type and extent of control

8.4.3 Information for external providers

8.5 Production and service provision

8.5.1 Control of production and service provision

8.5.2 Identification and traceability

8.5.3 Property belonging to customers or external providers

8.5.4 Preservation

8.5.5 Post-delivery activities

8.5.6 Control of changes

8.6 Release of products and services

8.7 Control of nonconforming outputs

9 Performance evaluation

9.1 Monitoring, measurement, analysis and evaluation

9.1.1 General

9.1.2 Customer satisfaction

9.1.3 Analysis and evaluation

9.2 Internal audit

9.3 Management review

9.3.1 General

9.3.2 Management review inputs

10 Improvement

10.1 General

10.2 Nonconformity and corrective action

10.3 Continual improvement