Office of the Chief Information Officer

Service Delivery and Operations Division

The Service Delivery and Operations Division (SDOD) provides reliable, secure, and  user-centered enterprise IT services that support daily agency operations. The Division operates core infrastructure, end-user services, collaboration tools, and workplace 
technologies, ensuring consistent service delivery across headquarters and regional offices. 

Network, Cloud and Infrastructure Operations Branch

The Network, Cloud and Infrastructure Operations Branch (NCIOB) operates and maintains the enterprise network, telecommunications, cloud, hosting, and data center environments; monitors infrastructure performance, availability, and capacity; and 
responds to incidents while managing enterprise telecommunications services and provider relationships. It executes infrastructure modernization and cloud migration efforts and delivers enterprise platforms, runtime services, APIs, and DevSecOps 
toolchains to support secure, repeatable delivery. The branch also develops, maintains, and executes business continuity and disaster‑recovery capabilities, including disaster recovery testing and continuity planning.

End User Service Management Branch

The End User Service Management Branch (EUSMB) delivers enterprise service desk and endpoint support while managing the full lifecycle of end user devices, AVD environments, and peripherals, and oversees contractor support for end user computing. It ensures endpoint configurations comply with security requirements such as STIGs, manages imaging, release, and deployment of updates and patches (including AVD), and administers cloud and onsite development and testing environments (EDTE). The branch operates ITSM processes and toolsets for incident, problem, change, and request management, maintains IT asset management policies and systems, and coordinates identity lifecycle activities with cybersecurity stakeholders to align accounts and access with security and operational requirements.

Enterprise Platforms and Applications Branch

The Enterprise Platforms and Applications Branch (EPAB) provides platform level support for collaboration and productivity tools, manages intranet and public website platforms, and supports digital content delivery and publishing tools. The branch ensures accessibility, usability, and reliability of services while aligning operations with governance standards. It also enables and governs citizen development, supporting low code/no code initiatives that comply with established policies.

Communication, Collaboration and Workspace Services Branch

The Communication, Collaboration and Workspace Services Branch (CCWSB) provides workplace technologies for communication, collaboration, and agency-wide information sharing, including audio-visual and conference room systems and implements enterprise voice, collaboration, and conferencing solutions. It manages graphics, printshop services, web streaming services, digital signage and other workplace communication tools to keep staff informed and connected. The branch also issues agency-wide IT communications to coordinate updates, outages, and service improvements.

Regional Operations East Branch

The Regional Operations East Branch (ROEB) provides localized IT support for eastern regional offices, which includes supporting local devices, networks, and audiovisual needs to ensure reliable day to day operations. It serves as a liaison between headquarters and regional leadership, coordinating priorities, escalations, and service delivery. The group also enforces alignment with enterprise standards and security requirements to maintain consistent, compliant IT services.

Data, AI, Technology and Applications Division

The Data, AI, Technology and Applications Division (DATAD) is responsible for the lifecycle management, modernization, and operation of mission and mission-support applications and enterprise data capabilities. The Director serves as the Chief Data Officer (CDO) responsible for enterprise data governance and strategy. The Director serves as the Freedom of Information Act (FOIA) Public Liaison.

Mission Systems Branch

The Mission Systems Branch (MSB) provides technical guidance to NRC mission offices on IT best practices for system planning, implementation, and management supporting agency mission systems. Specifically, the branch operates, maintains, and supports mission IT applications for reactor program systems, source management, nuclear emergency response, and safeguards information programs. It manages supported systems throughout their full system lifecycle, including operational activities, modernizations, system analysis, future planning, and decommissioning, and partners with NRC program offices to ensure IT capabilities meet agency requirements, budget, and security posture.

Mission Systems Support Branch

The Mission Systems Support Branch (MSSB) drives integration and deployment of enterprise and human capital solutions. It operates, maintains, and enhances mission support- and enterprise business applications while managing the full lifecycle of business systems from implementation through modernization and decommissioning. It partners with corporate offices to drive system improvements and supports agency DevSecOps implementation to ensure sustainable, secure, and effective code and system management.

Data and AI Platform Engineering Branch

The Data and AI Platform Engineering Branch (DAPEB) designs, builds, and operates secure, scalable data and AI platforms while managing enterprise data pipelines and storage to ensure reliable, high performance data delivery. It defines and enforces engineering standards and best practices, supports the full lifecycle of AI models from development through deployment and monitoring, and continuously evaluates emerging technologies to drive platform innovation and maintain engineering excellence.

Enterprise Data Analytics & Data Science Branch

The Enterprise Data Analytics & Data Science Branch (EDADSB) delivers enterprise analytics and data science services that produce actionable insights for agency programs through reports, dashboards, and visualizations. The branch establishes standardized performance metrics and reusable analytic products, develops a secure Data Service capability, supports compliant data sourcing, and leverages modern data science, and analytic tools to ensure high quality, interoperable, and scalable analytics.

Information & Records Management Branch

The Information and Records Management Branch (IRMB) serves as the agency’s authority for information management, ensuring policies, standards, and governance comply with all applicable laws and regulations. It manages the agencywide records program; administers FOIA, the Public Document Room, and stakeholder outreach; and oversees Paperwork Reduction Act implementation and information collection requirements. The branch also governs the agency’s SGI, CUI, and SUNSI programs, including declassification and authorization of classifiers and SGI designators, ensuring the proper protection and appropriate release of sensitive and classified information.

Cybersecurity, Risk and Enablement Division

The Cybersecurity, Risk and Enablement Division (CRED) plays a central role in safeguarding the agency’s digital ecosystem. The Division is responsible for protecting enterprise systems, managing cybersecurity and privacy risks, and ensuring that security practices remain aligned with modern threats and technologies. The Division Director serves as both the Chief Information Security Officer (CISO) and the Senior Agency Official for Privacy (SAOP), providing unified leadership across these critical disciplines.

Cybersecurity Operations, Threat & Engineering Branch

The Cybersecurity Operations, Threat & Engineering Branch (COTEB) focuses on defending the enterprise through proactive and reactive cyber capabilities. This branch operates the Security Operations Center (SOC) and associated monitoring technologies 
to detect and respond to cybersecurity incidents. The branch gathers threat intelligence, conducts threat hunting, and manages vulnerability mitigation to reduce exposure across the environment. The branch also oversees Identity, Credential, and Access 
Management (ICAM) services and leads cybersecurity engineering efforts. By supporting Zero Trust Architecture implementation and facilitating secure Cloud and DevSecOps practices, this branch ensures that modern, resilient security capabilities are fully integrated across agency systems.

System Security & Risk Management Branch

The System Security & Risk Management Branch (SSRMB) is responsible for maintaining the ongoing security and authorization of agency systems. This branch manages the Information System Security Manager (ISSM) program and oversees the full Risk Management Framework (RMF) and Authorization to Operate (ATO) lifecycle. They ensure systems undergo continuous monitoring, maintain security posture, and meet authorization requirements. Additionally, the branch oversees Plan of Action and 
Milestones (POA&M) management and makes system-level risk decisions to help the agency maintain compliance and reduce enterprise risk over time.

Cybersecurity Strategy & Enablement Branch

The Cybersecurity Strategy & Enablement Branch (CSEB) provides the strategic foundation and governance needed to support a robust cybersecurity program. This branch leads enterprise cyber strategy and planning while executing governance, risk, and compliance (GRC) activities. The branch manages the cyber budget and enterprise security contracts, ensuring resources align with organizational priorities. The branch also oversees the privacy program, manages supply chain risk, and delivers cyber data 
analytics and metrics for leadership visibility. Through cybersecurity and privacy training and awareness initiatives, as well as coordination of FISMA, OMB, and CISA reporting, this branch enables informed decision-making and strengthens the agency’s overall 
security culture.

Strategic Technology and Enterprise Portfolio Governance Division

The Strategic Technology and Enterprise Portfolio Governance Division (STEPGD) leads strategic planning, governance, and oversight of the agency’s technology investments and enterprise portfolio. The Division establishes and enforces portfolio management, enterprise architecture, and investment review processes to align technology initiatives with agency priorities, ensure sound governance, and maximize benefits realization. The Division Director provides unified leadership for portfolio decision-making, prioritization, and stakeholder engagement across program and corporate offices.

Enterprise IT Strategy and Governance Branch

The Enterprise IT Strategy and Governance Branch (EISGB) maintain IT strategy documents, roadmaps, and the Technical Reference Model while leading Capital Planning and Investment Control processes. It governs service request and intake processes, including the Digital Services Center, manages intake and prioritization of requests, supports IT/IM governance bodies, and tracks performance metrics to ensure investments align with agency priorities and deliver measurable outcomes.

IT Financial Strategy and Investment Branch

The IT Financial Strategy and Investment Branch (IFSIB) ensures enterprise IT investments are governed, compliant, and aligned with agency priorities by enforcing FITARA requirements, leading Technology Business Management (TBM), and overseeing IT purchasing governance. It also manages IT/IM budget formulation and execution to optimize resource allocation, financial accountability, and investment outcomes across the enterprise.

Enterprise Architecture Team (Non-Supervisory, Reporting to the CIO)

Provide authoritative direction for the agency’s target-state technology architecture, standards, and integration framework to ensure all IT systems, platforms, and services align with NRC’s strategic objectives and operate securely, efficiently, and cohesively. The Enterprise Architecture Team (EAT) assists in developing agency IT/IM strategy and creates IT roadmaps that translate strategy into actionable architecture plans. The team defines target-state architecture and technical standards, conducts alignment reviews of investments, and manages the Architecture Review Board to ensure projects conform to enterprise direction. EAT performs portfolio rationalization to eliminate redundancy and optimize investments, and it establishes data architecture and interoperability standards to enable secure, consistent data exchange across systems.

Strategic Vendor Management Team (Non-Supervisory, Reporting to the CIO)

Deliver centralized, enterprise-level oversight of NRC’s IT vendor ecosystem, ensuring effective management of vendor performance, cost, and risk to maximize value and minimize operational risks. The Strategic Vendor Management Team (SVMT) provides enterprise oversight of vendor performance, cost, integration, and risk by monitoring SLAs/SLRs/OLAs, ensuring cross-vendor service integration, and conducting financial and contractual oversight. The team develops enterprise vendor strategy and market intelligence to inform investment recommendations and leads the Total Experience Advisory Board to align vendor outcomes with agency priorities.