IR 05000335/2013404
| ML14027A727 | |
| Person / Time | |
|---|---|
| Site: | Saint Lucie  |
| Issue date: | 01/23/2014 |
| From: | Scott Shaeffer NRC/RGN-II/DRS/EB2 |
| To: | Nazar M Florida Power & Light Co |
| References | |
| IR-13-404 | |
| Download: ML14027A727 (5) | |
Text
January 23, 2014
SUBJECT:
ST LUCIE PLANT NRC TEMPORARY INSTRUCTION 2201/004, INSPECTION OF IMPLEMENTATION OF INTERIM CYBER SECURITY MILESTONES 1-7 INSPECTION REPORT NO. 05000335/2013404 AND 05000389/2013404
Dear Mr. Nazar:
On December 13, 2013, the U.S. Nuclear Regulatory Commission (NRC) completed the onsite activities associated with the inspection at your St Lucie Plant, Units 1 and 2. The enclosed report documents the results of this inspection, which were discussed on December 13, 2013, with you and other members of your staff.
The inspection examined activities conducted under your license as they relate to safety and compliance with the commissions rules and regulations and with the conditions of your license related to the implementation of interim cyber security milestones. The inspection was conducted in accordance with NRC Temporary Instruction (TI) 2201/004, Inspection of Implementation of Interim Cyber Security Milestones 1-7 issued January 3, 2013.
Three findings of very low safety significance (Green) which were determined to involve violations of NRC requirements were identified during this inspection. Further, one licensee-identified violation, of very low safety significance (Green) is listed in this report. However, in accordance with the Security Issue Forum (SIF) Charter, the NRC can exercise enforcement discretion during inspection of the interim cyber security measures for licensees who demonstrate a good faith interpretation and attempt to implement Milestones 1-7. This discretion applies to licensees who have tried to implement the new requirements, but failed to be in full compliance. Before discretion is considered or granted for any issue, licensees must accept the finding, place the finding into their Corrective Actions Program (CAP), and take appropriate corrective action to restore compliance in a timely manner.
The issues above were discussed at the SIF meeting on January 8, 2014. Based upon the meeting, the NRC is not pursuing enforcement action due to your good-faith attempt to interpret and implement Interim Cyber Security Milestones 1 - 7 commitments and because of your prompt corrective actions to enter these issues into your CAP. Upon completion of all corrective actions, you are requested to provide written notification to the NRCs regional office as to the method and date of closure for the identified issue(s).
If you contest the violations or significance of the findings discussed in the report, you should provide a response within 30 days of the date of this inspection report, with the basis for your denial, to the Nuclear Regulatory Commission, ATTN: Document Control Desk, Washington DC 20555-0001; with copies to the Regional Administrator, Region II; the Director, Office of Enforcement, United States Nuclear Regulatory Commission, Washington, DC 20555-0001; and the NRC Resident Inspector at St Lucie Plant.
In accordance with 10 CFR 2.390 of the NRCs Rules of Practice, a copy of this letter will be available electronically for public inspection in the NRC Public Document Room or from the Publicly Available Records (PARS) component of the NRCs Agencywide Documents Access and Management System (ADAMS). ADAMS is accessible from the NRC Web site at http://www.nrc.gov/reading-rm/adams.html (the Public Electronic Reading Room).
However, the material enclosed herewith contains Security-Related Information in accordance with 10 CFR 2.390(d)(1) and its disclosure to unauthorized individuals could present a security vulnerability. Therefore, the material in the enclosure will not be made available electronically for public inspection in the NRC Public Document Room or from the PARS component of NRC's ADAMS. If you choose to provide a response and security-related information is necessary to provide an acceptable response, please mark your entire response Security-Related InformationWithhold from Public Disclosure under 10 CFR 2.390, in accordance with 10 CFR 2.390(d)(1), and follow the instructions for withholding in 10 CFR 2.390(b)(1). In accordance with 10 CFR 2.390(b)(1)(ii), the NRC is waiving the affidavit requirements for your response.
Sincerely,
/RA/
Scott M. Shaeffer, Chief Engineering Branch 2 Division of Reactor Safety
Docket No.: 50-335, 50-389 License No.: DPR-67, NPF-16
Enclosure:
Inspection Report No. 05000335/2013404 and 05000389/2013404 w/ Attachment: Supplementary Information (Official Use Only - Security Related Information)
cc: (See page 3)
_ML14027A727______________
SUNSI REVIEW COMPLETE FORM 665 ATTACHED OFFICE RII:DRS RII:DRS CONTRACTOR RII:DRS RII:DRP RII:DRS ADMIN RII:DRS SIGNATURE JJP3 MJS6 RA
DWR1 JYC SMS NAME PATEL SINGLETARY RORABAUGH
RICH CALLOWAY SHAEFFER DATE 1/ 16 /2014 1/17 /2014 1/16 /2014 1/ /2014 1/17 /2014 1/23/2014 1/ 23 /2014 E-MAIL COPY?
YES NO YES NO YES NO YES NO YES NO YES NO YES NO cc:
Joseph Jensen Site Vice President St. Lucie Nuclear Plant 6501 S. Ocean Drive Jensen Beach, FL 34957
Eric Katzman Licensing Manager St. Lucie Nuclear Plant 6501 South Ocean Drive Jensen Beach, FL 34957-2000 Letter to Mano Nazar from Scott M Shaeffer dated January 23, 2014
SUBJECT:
ST LUCIE PLANT NRC TEMPORARY INSTRUCTION 2201/004, INSPECTION OF IMPLEMENTATION OF INTERIM CYBER SECURITY MILESTONES 1-7 INSPECTION REPORT NO. 05000335/2013404 and 05000389/2013404
Distribution:
B. Westreich, NSIR (hard copy w/ encl)
G. West Jr., NSIR (hard copy w/ encl)
N. Coleman, OE (hard copy w/encl)
RIDSNRRDIRS
Distribution w/o Encl:
PUBLIC WO
work order