Poland's nuclear programme has entered a phase in which security decisions made before first concrete will shape the operating reality for decades. At Lubiatowo–Kopalino, the AP1000 project is not only an energy investment; it is a critical-infrastructure system that will sit inside a regional threat environment, a cyber domain, a supply chain and a public-information space. The security architecture has to be built in parallel with the plant, not added after commissioning.
For large projects, the most common mistake is organizational: physical protection, cybersecurity and operating procedures are designed as separate workstreams. In a nuclear facility they are one system. A gate, an identity credential, an OT firewall, a supplier approval rule and an emergency command protocol all protect the same asset.
Nuclear security is not a perimeter problem. The perimeter matters, but only as one layer in a chain of controls that begins with the design basis threat and ends with rehearsed response. Drones, insider risk, sabotage, supply-chain compromise and disinformation each cross different boundaries. The response must therefore be integrated across civilian, technical and state-security functions.
The physical layer should be designed as defense in depth: controlled areas, progressive access controls, hardened vital zones, surveillance analytics and a response posture that is trained rather than theoretical. The lesson of modern conflict is simple: infrastructure is no longer attacked only by conventional means, and the air above a site can no longer be treated as empty space.
The cyber layer has to be built around operational technology, not corporate IT. Reactor-supporting systems, process-control networks and plant data flows require segmentation, strict whitelisting, monitoring and a security operations model that understands industrial protocols. A nuclear SOC is not a generic help desk with alerts; it is a command function for operational continuity.
The supply chain is the perimeter before the perimeter. Hardware, firmware, software updates, maintenance tools and subcontractor access can introduce risk long before an item reaches a protected area. Vendor assurance, SBOM discipline, country-of-origin review and continuous supplier monitoring should therefore be treated as design requirements, not procurement paperwork.
In nuclear security, a procedure that is not trained under pressure is only a document.
People are the final control layer. Personnel reliability, two-person integrity, simulator training, crisis drills and clear escalation rules create the institutional habits that technology alone cannot provide.
Poland has a rare opportunity to build a nuclear-security model before the operating organization is locked in place. Standards set now will govern contracts, training, interfaces, exercises and audits for decades. Ameno Star's view is that the AP1000 era requires not only nuclear engineering, but an integrated security architecture sized to the threats of the 2030s.