ML11147A117
| ML11147A117 | |
| Person / Time | |
|---|---|
| Site: | Point Beach  |
| Issue date: | 06/08/2011 |
| From: | Beltz T Plant Licensing Branch III |
| To: | Meyer L Point Beach |
| Orf T | |
| References | |
| TAC ME4248, TAC ME4249 | |
| Download: ML11147A117 (3) | |
Text
UNITED STATES NUCLEAR REGULATORY COMMISSION WASHINGTON, D.C. 20555-0001 June 8, 2011 Mr. Larry Meyer Site Vice President NextEra Energy Point Beach, LLC Point Beach Nuclear Plant, Units 1 and 2 6610 Nuclear Road Two Rivers, WI 54241-9516
SUBJECT:
POINT BEACH NUCLEAR PLANT, UNIT NOS. 1 AND 2 - REQUEST FOR ADDITIONAL INFORMATION REGARDING LICENSE AMENDMENT REQUEST FOR APPROVAL OF CYBER SECURITY PLAN (TAC NOS. ME4248 AND ME4249)
Dear Mr. Meyer:
By letter dated July 8, 2010, as supplemented by letters dated September 28, 2010, November 12, 2010, November 23, 2010, and March 31, 2011, NextEra Energy Point Beach, LLC, submitted a license amendment request for Point Beach, Units 1 and 2. The proposed amendments requested approval of the Point Beach Cyber Security Plan.
The NRC staff is reviewing your submittals and has determined that additional information is needed to complete its review. The specific question is found in the enclosed request for additional information (RAI). It is requested that your RAI response be provided within 30 days of the date of this letter.
Sincerely, Terry A. Beltz, Senior Project Manager Plant Licensing Branch 3-1 Division of Operating Reactor Licensing Office of Nuclear Reactor Regulation Docket Nos. 50-266 and 50-301
Enclosure:
Request for Additional Information cc w/enclosure: Distribution via Listserv
REQUEST FOR ADDITIONAL INFORMATION REGARDING LICENSE AMENDMENT REQUEST FOR APPROVAL OF THE CYBER SECURITY PLAN POINT BEACH NUCLEAR PLANT, UNIT NOS. 1 AND 2 DOCKET NOS. 50-266 AND 50-301 The requirements of 10 CFR 73.54(a) are that each licensee subject to the requirements of this section shall provide high assurance that digital computer and communication systems and networks are adequately protected against cyber attacks, up to and including the design basis threat as described in Section 73.1. Furthermore, 10 CFR 73.54(a)(1) states that the licensee shall protect digital computer and communication systems and networks associated with:
(i) safety-related and important-to-safety functions; (ii) security functions; (iii) emergency preparedness functions, including offsite communications; and (iv) support systems and equipment that, if compromised, would adversely impact safety, security, or emergency preparedness functions.
Section 3.0 of Enclosure 1 to the cyber security plan, Evaluation of Proposed Change, includes clarifications to the Nuclear Energy Institute 08-09 Cyber Security Plan template with regard to Emergency Preparedness and states, "Therefore, the systems and portions of systems to be protected from cyber attack in accordance with 10 CFR 73.54(a)(1)(iii), must: (1) Perform a RSPS [Risk Significant Planning Standards]-related EP [emergency preparedness] function, and (2) Be within the licensee's complete custody and controL" The rule clearly states that digital computer and communication systems and networks associated with emergency preparedness functions, including offsite communications, shall be adequately protected against cyber attacks. For systems and networks that are not within the licensee's complete custody and control, the licensee is still required to ensure protection against cyber attacks.
Explain NextEra Energy Point Beach's deviation from the 10 CFR 73.54(a)(1).
ENCLOSURE
Mr. Larry Meyer June 8, 2011 Site Vice President NextEra Energy Point Beach, LLC Point Beach Nuclear Plant, Units 1 and 2 6610 Nuclear Road Two Rivers, WI 54241-9516
SUBJECT:
POINT BEACH NUCLEAR PLANT, UNIT NOS. 1 AND 2 - REQUEST FOR ADDITIONAL INFORMATION REGARDING LICENSE AMENDMENT REQUEST FOR APPROVAL OF CYBER SECURITY PLAN (TAC NOS. ME4248 AND ME4249)
Dear Mr. Meyer:
By letter dated July 8,2010, as supplemented by letters dated September 28,2010, November 12, 2010, November 23,2010, and March 31, 2011, NextEra Energy Point Beach, LLC, submitted a license amendment request for Point Beach, Units 1 and 2. The proposed amendments requested approval of the Point Beach Cyber Security Plan.
The NRC staff is reviewing your submittals and has determined that additional information is needed to complete its review. The specific question is found in the enclosed request for additional information (RAI). It is requested that your RAI response be provided within 30 days of the date of this letter.
Sincerely, IRA!
Terry A. Beltz, Senior Project Manager Plant Licensing Branch 3-1 Division of Operating Reactor Licensing Office of Nuclear Reactor Regulation Docket Nos. 50-266 and 50-301
Enclosure:
Request for Additional Information cc w/enclosure: Distribution via Listserv DISTRIBUTION:
PUBLIC LPL3-1 r/f RidsNrrDorlLpl3-1 RidsNrrPMPointBeach RidsNrrPMStLucie RidsNrrLABClayton RidsNrrLABTutly RidsAcrsAcnw_MailCTR RidsNrrDorlDpr RidsOgcRp RidsRgn3MailCenter CErlanger, NSIR PPederson, NSIR TWengert, NRR/DORL BSingal, NRR/DORL ADAMS Accession No'.. M L 1114 7 A 117 "via email OFFICE LPL2-2/PM LPL2-2/LA NSIRIDSP/DDRSI ISCPB/BC LPL3-1/BC LPL3-1/PM NAME TOrf BClayton CErlanger*
RPascarelli TBeitz DATE 06/01/11 06/01/11 06/08/11 06/08/11 06/08/11 OFFICIAL AGENCY RECORD