ML14209A023

From kanterella
Jump to navigation Jump to search

Issuance of Amendment No. 210, Modify License Condition Related to Approval of Revised Cyber Security Plan Implementation Milestone 8 Completion Date
ML14209A023
Person / Time
Site: Wolf Creek Wolf Creek Nuclear Operating Corporation icon.png
Issue date: 08/14/2014
From: Lyon C
Plant Licensing Branch IV
To: Heflin A
Wolf Creek
Lyon C
References
TAC MF3392
Download: ML14209A023 (16)
v  d  e


Text

UNITED STATES NUCLEAR REGULATORY COMMISSION WASHINGTON, D.C. 20555-0001 August 14, 2014 Mr. Adam C. Heflin President, Chief Executive Officer, and Chief Nuclear Officer Wolf Creek Nuclear Operating Corporation P.O. Box411 Burlington, KS 66839

SUBJECT:

WOLF CREEK GENERATING STATION- ISSUANCE OF AMENDMENT RE:

REVISION TO CYBER SECURITY PLAN IMPLEMENTATION SCHEDULE COMPLETION DATE (TAC NO. MF3392)

Dear Mr. Heflin:

The U.S. Nuclear Regulatory Commission (the Commission) has issued the enclosed Amendment No. 210 to Renewed Facility Operating License No. NPF-42 for the Wolf Creek Generating Station. The amendment consists of changes to the license in response to your application dated January 23, 2014. You provided a redacted version of your application by letter dated March 31, 2014.

The amendment revises the Cyber Security Plan Implementation Milestone No. 8 completion date and the physical protection license condition.

A copy of our related Safety Evaluation is enclosed. The Notice of Issuance will be included in the Commission's next biweekly Federal Register notice.

Sincerely, Carl F. Lyon, Project Manager Plant Licensing Branch IV-1 Division of Operating Reactor Licensing Office of Nuclear Reactor Regulation Docket No. 50-482

Enclosures:

1. Amendment No. 210 to NPF-42
2. Safety Evaluation cc w/encls: Distribution via Listserv

UNITED STATES NUCLEAR REGULATORY COMMISSION WASHINGTON, D.C. 20555-0001 WOLF CREEK NUCLEAR OPERATING CORPORATION WOLF CREEK GENERATING STATION DOCKET NO. 50-482 AMENDMENT TO RENEWED FACILITY OPERATING LICENSE Amendment No. 210 License No. NPF-42

1. The Nuclear Regulatory Commission (the Commission) has found that:

A. The application for amendment to the Wolf Creek Generating Station (the facility)

Renewed Facility Operating License No. NPF-42 filed by the Wolf Creek Nuclear Operating Corporation (the Corporation), dated January 23, 2014, complies with the standards and requirements of the Atomic Energy Act of 1954, as amended (the Act), and the Commission's rules and regulations set forth in 10 CFR Chapter I; B. The facility will operate in conformity with the application, as amended, the provisions of the Act, and the rules and regulations of the Commission; C. There is reasonable assurance (i) that the activities authorized by this amendment can be conducted without endangering the health and safety of the public, and (ii) that such activities will be conducted in compliance with the Commission's regulations; D. The issuance of this license amendment will not be inimical to the common defense and security or to the health and safety of the public; and E. The issuance of this amendment is in accordance with 10 CFR Part 51 of the Commission's regulations and all applicable requirements have been satisfied.

Enclosure 1

2. Accordingly, the license is amended by changes to the following paragraphs:

Paragraph 2.C.(2) of Renewed Facility Operating License No. NPF-42 is hereby amended to read as follows:

(2) Technical Specifications and Environmental Protection Plan The Technical Specifications contained in Appendix A, as revised through Amendment No. 210, and the Environmental Protection Plan contained in Appendix B, both of which are attached hereto, are hereby incorporated in the license. The Corporation shall operate the facility in accordance with the Technical Specifications and the Environmental Protection Plan.

Paragraph 2.E. of Renewed Facility Operating License No. NPF-42 is hereby amended to read as follows:

The licensee shall fully implement and maintain in effect all provisions of the Commission approved physical security, training and qualification, and safeguards contingency plans including amendments made pursuant to provisions of the Miscellaneous Amendments and Search Requirements revisions to 10 CFR 73.55 (51 FR 27817 and 27822) and to the authority of 10 CFR 50.90 and 10 CFR 50.54(p). The set of combined plans, which contains Safeguards Information protected under 10 CFR 73.21, is entitled: "Wolf Creek Security Plan, Training and Qualification Plan, and Safeguard Contingency Plan," and was submitted on May 17, 2006.

The licensee shall fully implement and maintain in effect all provisions of the Commission approved cyber security plan (CSP), including changes made pursuant to the authority of 10 CFR 50.90 and 10 CFR 50.54(p).

The licensee's CSP was approved by License Amendment No. 197, as supplemented by changes approved by License Amendment No. 202 and License Amendment No. 210.

3. The license amendment is effective as of its date of issuance and shall be implemented within 90 days of the date of issuance. The implementation of the CSP, including the key intermediate milestone dates and the full implementation date, shall be in accordance with the implementation schedule submitted by the licensee on January 23, 2014, and approved by the NRC staff with this license amendment. All subsequent changes to the NRC-approved CSP implementation schedule will require prior NRC approval pursuant to 10 CFR 50.90.

FOR THE NUCLEAR REGULATORY COMMISSION Eric R. Oesterle, Acting Chief Plant Licensing Branch IV-1 Division of Operating Reactor Licensing Office of Nuclear Reactor Regulation

Attachment:

Changes to the Renewed Facility Operating License Date of Issuance: August 14, 2014

ATTACHMENT TO LICENSE AMENDMENT NO. 210 RENEWED FACILITY OPERATING LICENSE NO. NPF-42 DOCKET NO. 50-482 Replace the following pages of the Renewed Facility Operating License No. NPF-42 with the attached revised pages. The revised pages are identified by amendment number and contain marginal lines indicating the areas of change.

Renewed Facility Operating License REMOVE INSERT 4 4 7 7

4 (5) The Operating Corporation, pursuant to the Act and 10 CFR Parts 30, 40 and 70, to receive, possess, and use in amounts as required any byproduct, source or special nuclear material without restriction to chemical or physical form, for sample analysis or instrument calibration or associated with radioactive apparatus or components; and (6) The Operating Corporation, pursuant to the Act and 10 CFR Parts 30, 40 and 70, to possess, but not separate, such byproduct and special nuclear materials as may be produced by the operation of the facility.

C. This renewed operating license shall be deemed to contain and is subject to the conditions specified in the Commission=s regulations in 10 CFR Chapter I and is subject to all applicable provisions of the Act and to the rules, regulations, and orders of the Commission, now or hereafter in effect; and is subject to the additional conditions specified or incorporated below:

(1) Maximum Power Level The Operating Corporation is authorized to operate the facility at reactor core power levels not in excess of 3565 megawatts thermal (1 00%

power) in accordance with the conditions specified herein.

(2) Technical Specifications and Environmental Protection Plan The Technical Specifications contained in Appendix A, as revised through Amendment No. 210, and the Environmental Protection Plan contained in Appendix B, both of which are attached hereto, are hereby incorporated in the license. The Corporation shall operate the facility in accordance with the Technical Specifications and the Environmental Protection Plan.

(3) Antitrust Conditions Kansas Gas & Electric Company and Kansas City Power & Light Company shall comply with the antitrust conditions delineated in Appendix C to this license.

(4) Environmental Qualification (Section 3.11 I SSER #41 Section 3.11 I SSER #5)*

Deleted per Amendment No. 141.

  • The parenthetical notation following the title of many license conditions denotes the section of the supporting Safety Evaluation Report and/or its supplements wherein the license condition is discussed.

Renewed License No. NPF-42 Amendment No. 210

7 (16) Additional conditions The Additional Conditions contained in Appendix D, as revised through Amendment No. 179, are hereby incorporated into this license. Wolf Creek Nuclear Operating Corporation shall operate the facility in Accordance with the Additional Conditions.

D. Exemptions from certain requirements of Appendix J to 10 CFR Part 50, and from a portion of the requirements of General Design Criterion 4 of Appendix A to 10 CFR Part 50, are described in the Safety Evaluation Report. These exemptions are authorized by law and will not endanger life or property or the common defense and security and are otherwise in the public interest. Therefore, these exemptions are hereby granted pursuant to 10 CFR 50.12. With the granting of these exemptions the facility will operate, to the extent authorized herein, in conformity with the application, as amended, the provisions of the Act, and the rules and regulations of the Commission.

E. The licensee shall fully implement and maintain in effect all provisions of the Commission-approved physical security, training and qualification, and safeguards contingency plans including amendments made pursuant to provisions of the Miscellaneous Amendments and Search Requirements revisions to 10 CFR 73.55 (51 FR 27817 and 27822) and to the authority of 10 CFR 50.90 and 10 CFR 50.54(p). The set of combined plans, which contains Safeguards Information protected under 10 CFR 73.21, is entitled: "Wolf Creek Security Plan, Training and Qualification Plan, and Safeguard Contingency Plan,"

and was submitted on May 17, 2006.

The licensee shall fully implement and maintain in effect all provisions of the Commission-approved cyber security plan (CSP), including changes made pursuant to the authority of 10 CFR 50.90 and 10 CFR 50.54(p). The licensee's CSP was approved by License Amendment No. 197, as supplemented by changes approved by License Amendment No. 202 and License Amendment No. 210.

F. Deleted per Amendment No. 141.

G. The licensees shall have and maintain financial protection of such type and in such amounts as the Commission shall require in accordance with Section 170 of the Atomic Energy Act of 1954, as amended, to cover public liability claims.

H. The Updated Safety Analysis Report (USAR) supplement, as revised, submitted pursuant to 10 CFR 54.21 (d), shall be included in the next scheduled update to the USAR required by 10 CFR 50.71(e)(4), as appropriate, following the issuance of this renewed operating license. Until that update is complete, WCNOC may make changes to the programs and activities described in the supplement without prior Commission approval, provided that WCNOC evaluates such changes pursuant to the criteria set forth in 10 CFR 50.59 and otherwise complies with the requirements in that section.

Renewed License No. NPF-42 Amendment No. 179, 197, 202, 210

UNITED STATES NUCLEAR REGULATORY COMMISSION WASHINGTON, D.C. 20555-0001 SAFETY EVALUATION BY THE OFFICE OF NUCLEAR REACTOR REGULATION RELATED TO AMENDMENT NO. 210 TO RENEWED FACILITY OPERATING LICENSE NO. NPF-42 WOLF CREEK NUCLEAR OPERATING CORPORATION WOLF CREEK GENERATING STATION DOCKET NO. 50-482

1.0 INTRODUCTION

By application dated January 23, 2014, Wolf Creek Nuclear Operating Corporation (WCNOC, the licensee) requested changes to the renewed facility operating license (FOL) for Wolf Creek Generating Station (WCGS). Portions of the letter dated January 23, 2014, contain sensitive unclassified non-safeguards information and, accordingly, are withheld from public disclosure in accordance with Title 10 of the Code of Federal Regulations (1 0 CFR) Section 2.390(d)(1 ). A redacted version of the application was provided by letter dated March 31, 2014 (Agencywide Documents Access and Management System (ADAMS) Accession No. ML14097A088).

The proposed changes would revise the Cyber Security Plan (CSP) Implementation Milestone No. 8 completion date and the physical protection license condition 2.E. Milestone 8 of the CSP implementation schedule concerns the full implementation of the CSP.

2.0 REGULATORY EVALUATION

The U.S. Nuclear Regulatory Commission (NRC) staff reviewed and approved the licensee's existing CSP implementation schedule in WCGS License Amendment No. 197, dated July 27, 2011 (ADAMS Accession No. ML111990339), which approved the incorporation of the CSP into the facility's current licensing basis. The NRC staff considered the following regulatory requirements and guidance in its review of the current license amendment request to modify the existing CSP implementation schedule:

  • 10 CFR 73.54, "Protection of digital computer and communication systems and networks," states, in part: "Each [CSP] submittal must include a proposed implementation schedule. Implementation of the licensee's cyber security program must be consistent with the approved schedule."
  • The licensee's renewed FOL includes license condition 2.E, which requires the licensee to fully implement and maintain in effect all provisions of the Commission-approved CSP.

Enclosure 2

  • In an NRC memorandum dated October 24, 2013 (ADAMS Accession No. ML13295A467), the NRC staff listed criteria to consider in evaluating licensee requests to postpone a cyber security program implementation date (commonly known as Milestone 8).

3.0 TECHNICAL EVALUATION

Amendment No. 197 (ADAMS Accession No. ML111990339) to Renewed FOL NPF-42 for WCGS was issued on July 27, 2011. The NRC staff also approved the licensee's CSP implementation schedule, as discussed in the safety evaluation issued with the amendment.

The implementation schedule had been submitted by the licensee based on a template prepared by the Nuclear Energy Institute (NEI), which the NRC staff found acceptable for licensees to use to develop their CSP implementation schedules (ADAMS Accession No. ML110600218). The licensee's proposed implementation schedule for the Cyber Security Program identified completion dates and bases for the following eight milestones:

1) Establish the Cyber Security Assessment Team (CSAT);
2) Identify Critical Systems (CSs) and Critical Digital Assets (CDAs);
3) Implement installation of a deterministic one-way device between lower level devices and higher level devices;
4) Implement the security control Access Control For Portable And Mobile Devices;
5) Implement observation and identification of obvious cyber-related tampering to existing insider mitigation rounds by incorporating the appropriate elements;
6) Identify, document, and implement technical cyber security controls in accordance with Mitigation of Vulnerabilities and Application of Cyber Security Controls for CDAs that could adversely impact the design function of physical security target set equipment;
7) Commence ongoing monitoring and assessment activities for those target set CDAs whose security controls have been implemented; and
8) Full implementation of the CSP for all safety, security, and emergency preparedness functions.

3.1 Licensee's Proposed Change Currently, Milestone 8 of the WCGS CSP requires the licensee to fully implement the CSP by December 31, 2014. In its January 23, 2014, application, WCNOC proposed to change the Milestone 8 completion date to June 30, 2017.

3.2 NRC Staff Evaluation The licensee submitted its application on January 23, 2014, after the staff issued guidance on October 24, 2013 (ADAMS Accession No. ML13295A467}, to evaluate requests to postpone Milestone 8 implementation dates. The licensee's application addressed all the criteria in the guidance. The intent of the cyber security implementation schedule was for licensees to demonstrate ongoing implementation of their cyber security program prior to full implementation by the date specified in Milestone 8. Milestone 8 is the date when full implementation of Cyber Security Plan for all safety, security, and emergency preparedness functions will be achieved.

Activities include establishing a CSAT, identifying critical systems and CDAs, installing deterministic one-way devices between defensive levels, implementing access control for portable and mobile devices, implementing methods to observe and identify obvious cyber-related tampering, and conducting ongoing monitoring and assessment activities for target set CDAs. In their aggregate, the interim milestones demonstrate ongoing implementation of the cyber security program.

Ongoing implementation is reflected in the NRC staff's October 24, 2013, guidance. The criteria in the guidance, which the licensee addressed, are:

1) Identification of the specific requirements of the cyber security plan that the licensee needs additional time to implement.
2) Detailed justification that describes the reason the licensee requires additional time to implement the specific requirement or requirements identified.
3) A proposed completion date for Milestone 8 consistent with the remaining scope of work to be conducted and the resources available.
4) An evaluation of the impact that the additional time to implement the requirements will have on the effectiveness of the licensee's overall cyber security program in the context of milestones already completed.
5) A description of the licensee's methodology for prioritizing completion of work for critical digital assets associated with significant safety consequences and with reactivity effects in the balance of plant.
6) A discussion of the licensee's cyber security program performance up to the date of the license amendment request.
7) A discussion of cyber security issues pending in the licensee's corrective action program.
8) A discussion of modifications completed to support the cyber security program and a discussion of pending cyber security modifications.

The NRC staff evaluated the licensee's application addressing the above criteria. The NRC staff's evaluation is provided below, numbered to correspond to the above criteria.

1) Identification of the specific requirement or requirements of the cyber security plan that the licensee needs additional time to implement.

The licensee stated that the requirement of the CSP that it needs additional time to implement is Section 3.1, Analyzing Digital Computer Systems and Networks and Applying Cyber Security Controls. It listed several related items that were not yet complete, including:

  • CDA assessment work, which is resource intensive
  • Remediation activities
  • Change management activities
  • Training on new programs, processes, and procedures The NRC staff concludes that implementation of CSP Section 3.1 requires completing the actions the licensee noted.
2) Detailed justification that describes the reason the licensee requires additional time to implement the specific requirement or requirements identified.

The licensee stated despite a project team of 10 to 12 full-time-equivalent staff including five Certified Information Systems Security Professionals (CISSPs), WCNOC is experiencing challenges with full implementation of Implementation Milestone 8. The primary contributing factors to these challenges include:

  • The large volume of effort associated with documentation of CDA assessment and analysis using the deterministic process in Cyber Security Plan Section 3.1. More than 600 security controls must be addressed for each of 1,300 CDAs. Each CDA assessment package is then reviewed and approved by the CSAT. Despite the project team size, the rate of completion of CDA assessments does not support Implementation Milestone 8 completion within the current completion date.

The licensee provided details in its application about the actions listed in 1) above.

The NRC staff acknowledges that implementation issues can be experienced with large numbers of security controls and large numbers of CDAs. Based on the information provided by the licensee in its application, the NRC staff finds it reasonable that WCNOC would not be able to fully implement its CSP by December 31, 2014, and concludes that the licensee's explanation of the need for additional time is reasonable.

3) A proposed completion date for Milestone 8 consistent with the remaining scope of work to be conducted and the resources available.

The licensee proposed a Milestone 8 completion date of June 30, 2017, to complete CDA assessments, implement design modifications based on assessment results, update procedures and develop new procedures, and to provide cyber security training.

The revised date encompasses two additional refueling outages which will provide adequate time to plan and schedule implementation of design changes resulting from the assessments.

The NRC staff concludes that delaying final implementation of the cyber security program will provide adequate time, including two refueling outages, to accomplish the remaining work described by the licensee.

4) An evaluation of the impact that the additional time to implement the requirements will have on the effectiveness of the licensee's overall cyber security program in the context of milestones already completed.

The licensee indicated based on the cyber security implementation activities already completed, and completion of activities in progress with a planned completion date of December 31, 2014, WCNOC is secure and will continue to ensure that digital computer and communication systems and networks are adequately protected against cyber attacks during implementation of the remainder of the program by the proposed completion date of June 30, 2017. The licensee then briefly described how it had implemented the various milestones.

The NRC staff concludes that the licensee's site is more secure due to the milestones implemented to date, because the controls the licensee put in place mitigate the most significant cyber attack vectors on the most significant CDAs. Based on these controls and the prioritized, risk-informed methodology described in item 5 for completion of the Milestone 8 activities, the NRC staff concludes that the licensee's progress toward full implementation is reasonable and that the impact of the requested additional implementation time on the effectiveness of the overall cyber security program is being effectively managed.

5) A description of the licensee's methodology for prioritizing completion of work for critical digital assets associated with significant safety security, or emergency preparedness consequences and with reactivity effects in the balance of plant.

The licensee stated the WCNOC methodology for prioritizing Implementation Milestone 8 activities is centered on considerations for safety, security, Emergency Preparedness (EP) and Balance of Plant (BOP) (continuity of power) consequences.

The methodology is based on defense-in-depth, installed configuration of the CDAs, and susceptibility to the five commonly identified threat vectors. Prioritization for CDA assessment begins with safety-related CDAs and continues through the lower priority non-safety-related and EP CDAs:

  • Physical security CDAs
  • Important-to-safety CDAs (including BOP CDAs that directly impact continuity of power) and control system CDAs

The NRC staff concludes that the licensee's methodology is appropriate and risk informed.

6) A discussion of the licensee's cyber security program performance up to the date of the license amendment request.

The licensee stated Milestone 1 through 7 activities completed provide a high degree of protection against cyber security-related attacks. It provided details about the effectiveness of the completed work. It also noted a Quality Assurance (QA) surveillance concluded WCNOC has an effective program and that additional QA surveillances will be conducted during the interim period. A comprehensive self-assessment has been scheduled to ensure completeness and effectiveness. Also, on-going monitoring and time-based periodic actions provide continuing program performance monitoring.

The NRC staff concludes that the activities discussed above provide significant protection against cyber attacks and that the licensee is using the QA tools at its disposal to verify the effectiveness of the cyber security program.

7) A discussion of cyber security issues pending in the licensee's corrective action program (CAP).

The licensee stated WCNOC uses the CAP to document cyber security issues in order to trend, correct, and improve the WCNOC cyber security program. The CAP documents and tracks from initiation through closure, cyber security-required actions including issues identified during on-going program assessment activities. Adverse trends are monitored for program improvement and addressed through the CAP process. Examples of issues and activities pending in the CAP were provided.

The NRC staff concludes that the licensee is using its CAP to track issues for the cyber security program.

8) A discussion of modifications completed to support the cyber security program and a discussion of pending cyber security modifications.

The licensee discussed completed modifications and noted pending modifications will be based on completion of CDA assessments. The NRC staff concludes that these discussions are consistent with the information provided by the licensee in its application and, therefore, are acceptable.

3.3 Revision to License Condition By letter dated January 23, 2014, the licensee proposed to modify Paragraph 2.E of Renewed FOL No. NPF-42 for WCGS, which is a license condition requiring the licensee to fully implement and maintain in effect all provisions of the NRC-approved CSP.

Based on the NRC staff's review, the license condition in Paragraph 2.E of Renewed FOL No. NPF-42 for WCGS is modified as follows:

The licensee shall fully implement and maintain in effect all provisions of the Commission approved physical security, training and qualification, and safeguards contingency plans including amendments made pursuant to provisions of the Miscellaneous Amendments and Search Requirements revisions to 10 CFR 73.55 (51 FR 27817 and 27822) and to the authority of 10 CFR 50.90 and 10 CFR 50.54(p). The set of combined plans, which contains Safeguards Information protected under 10 CFR 73.21, is entitled: "Wolf Creek Security Plan, Training and Qualification Plan, and Safeguard Contingency Plan,"

and was submitted on May 17, 2006.

The licensee shall fully implement and maintain in effect all provisions of the Commission approved cyber security plan (CSP}, including changes made pursuant to the authority of 10 CFR 50.90 and 10 CFR 50.54(p). The licensee's CSP was approved by License Amendment No. 197, as supplemented by changes approved by License Amendment No. 202 and License Amendment No. 210.

3.4 Summary Based on its review of the licensee's submission, the NRC staff concludes that implementation of Milestones 1 through 7 provides significant protection against cyber attacks; that the licensee's explanation of the need for additional time is reasonable, and that it is acceptable for WCNOC to complete implementation of Milestone 8, full implementation of the CSP, by June 30, 2017. The NRC staff also concludes that, upon full implementation of the licensee's cyber security program, the requirements of the licensee's CSP and 10 CFR 73.54 will be met. Therefore, the NRC staff concludes that the proposed change is acceptable. Paragraph 2.E. of Renewed Facility Operating License No. NPF-42 is amended to read as follows:

The licensee shall fully implement and maintain in effect all provisions of the Commission approved physical security, training and qualification, and safeguards contingency plans including amendments made pursuant to provisions of the Miscellaneous Amendments and Search Requirements revisions to 10 CFR 73.55 (51 FR 27817 and 27822) and to the authority of 10 CFR 50.90 and 10 CFR 50.54(p). The set of combined plans, which contains Safeguards Information protected under 10 CFR 73.21, is entitled: "Wolf Creek Security Plan, Training and Qualification Plan, and Safeguard Contingency Plan," and was submitted on May 17, 2006.

The licensee shall fully implement and maintain in effect all provisions of the Commission approved cyber security plan (CSP), including changes made pursuant to the authority of 10 CFR 50.90 and 10 CFR 50.54(p).

The licensee's CSP was approved by License Amendment No. 197, as

supplemented by changes approved by License Amendment No. 202 and License Amendment No. 210.

The CSP milestone implementation dates are not regulatory commitments that can be changed unilaterally by the licensee, particularly in light of the regulatory requirement at 10 CFR 73.54, that "[i]mplementation of the licensee's cyber security program must be consistent with the approved schedule." This was discussed by the NRC staff in a letter to all operating reactor licensees, dated May 9, 2011 (ADAMS Accession No. ML110980538). This amendment approves the licensee's proposed scheduled June 30, 2017, completion date in the CSP. As stated in the implementation instructions in the amendment, "All subsequent changes to the NRC-approved CSP implementation schedule will require prior NRC approval pursuant to 10 CFR 50.90."

4.0 STATE CONSULTATION

In accordance with the Commission's regulations, the Kansas State official was notified of the proposed issuance of the amendment. The State official had no comments.

5.0 ENVIRONMENTAL CONSIDERATION

This amendment relates solely to safeguards matters and does not involve any significant construction impacts and is confined to modifications to systems used for security. The NRC staff has determined that the amendment involves no significant increase in the amounts, and no significant change in the types, of any effluents that may be released offsite, and that there is no significant increase in individual or cumulative occupational radiation exposure. The Commission has previously issued a proposed finding that the amendment involves no significant hazards consideration, and there has been no public comment on such finding published in the Federal Register on June 6, 2014 (79 FR 32765). Accordingly, the amendment meets the eligibility criteria for categorical exclusion set forth in 10 CFR 51.22(c)(12)(ii).

Pursuant to 10 CFR 51.22(b), no environmental impact statement or environmental assessment need be prepared in connection with the issuance of the amendment.

6.0 CONCLUSION

The Commission has concluded, based on the considerations discussed above, that: (1) there is reasonable assurance that the health and safety of the public will not be endangered by operation in the proposed manner, (2) there is reasonable assurance that such activities will be conducted in compliance with the Commission's regulations, and (3) the issuance of the amendment will not be inimical to the common defense and security or to the health and safety of the public.

Principal Contributor: J. Rycyna, NSIR/CSD Date: August 14, 2014

August 14, 2014 Mr. Adam C. Heflin President, Chief Executive Officer, and Chief Nuclear Officer Wolf Creek Nuclear Operating Corporation P.O. Box 411 Burlington, KS 66839

SUBJECT:

WOLF CREEK GENERATING STATION -ISSUANCE OF AMENDMENT RE:

REVISION TO CYBER SECURITY PLAN IMPLEMENTATION SCHEDULE COMPLETION DATE {TAC NO. MF3392)

Dear Mr. Heflin:

The U.S. Nuclear Regulatory Commission (the Commission) has issued the enclosed Amendment No. 210 to Renewed Facility Operating License No. NPF-42 for the Wolf Creek Generating Station. The amendment consists of changes to the license in response to your application dated January 23, 2014. You provided a redacted version of your application by letter dated March 31, 2014.

The amendment revises the Cyber Security Plan Implementation Milestone No. 8 completion date and the physical protection license condition.

A copy of our related Safety Evaluation is enclosed. The Notice of Issuance will be included in the Commission's next biweekly Federal Register notice.

Sincerely, IRA/

Carl F. Lyon, Project Manager Plant Licensing Branch IV-1 Division of Operating Reactor Licensing Office of Nuclear Reactor Regulation Docket No. 50-482

Enclosures:

1. Amendment No. 210 to NPF-42
2. Safety Evaluation cc w/encls: Distribution via Listserv DISTRIBUTION:

PUBLIC RidsNrrDoriDpr Resource RidsRgn4MaiiCenter Resource LPL4-1 r/f RidsNrrDorllpl4-1 Resource JRycyna, NSIR/CSD RidsAcrsAcnw_MaiiCTR Resource RidsNrrPMWolfCreek Resource BWestreich, NSIR/CSD RidsNsirOd Resource RidsNrrLAJBurkhardt Resource RFelts, NSR/CSD ADAMS A ccess1on No.: ML14209A023 *v1a

. memo d at ed J UIY I 7 , 2014 OFFICE N RRIDO RL/LPL4-1 /PM N RRIDORLILPL4-1 /LA NSIRJCSD/D*

NAME Flyon JBurkhardt BWestreich DATE 8/1/14 7/31/14 7/7/14 OFFICE OGC- NLO NRRIDORL/LPL4-1 /BC(A) NRRJDORLILPL4-1 /PM NAME MYoung EOesterle Flyon DATE 8/12/14 8/14/14 8/14/14 OFFICIAL RECORD COPY

Retrieved from "https://kanterella.com/w/index.php?title=ML14209A023&oldid=2046546"