IR 05000424/2022401
| ML22214B098 | |
| Person / Time | |
|---|---|
| Site: | Vogtle  |
| Issue date: | 08/04/2022 |
| From: | Gerald Mccoy NRC/RGN-II/DRS/EB2 |
| To: | Gayheart C Southern Nuclear Operating Co |
| References | |
| IR 2022401 | |
| Download: ML22214B098 (9) | |
Text
SUBJECT:
VOGTLE ELECTRIC GENERATING PLANT - CYBER SECURITY INSPECTION REPORT 05000424/2022401 AND 05000425/2022401
Dear Ms. Gayheart:
On June 30, 2022, the U.S. Nuclear Regulatory Commission (NRC) completed an inspection at Vogtle Electric Generating Plant and discussed the results of this inspection with Mr. Rob Norris and other members of your staff. The results of this inspection are documented in the enclosed report.
No findings or violations of more than minor significance were identified during this inspection.
This letter, its enclosure, and your response (if any) will be made available for public inspection and copying at http://www.nrc.gov/reading-rm/adams.html and at the NRC Public Document Room in accordance with Title 10 of the Code of Federal Regulations 2.390, Public Inspections, Exemptions, Requests for Withholding.
Sincerely, Gerald J. McCoy, Chief Engineering Br 2 Division of Reactor Safety Docket Nos. 05000424 and 05000425 License Nos. NPF-68 and NPF-81
Enclosure:
As stated
Inspection Report
Docket Numbers:
05000424 and 05000425
License Numbers:
Report Numbers:
05000424/2022401 and 05000425/2022401
Enterprise Identifier:
I-2022-401-0061
Licensee:
Southern Nuclear Operating Co.
Facility:
Vogtle Electric Generating Plant
Location:
Waynesboro, GA
Inspection Dates:
June 27, 2022 to July 01, 2022
Inspectors:
P. Braaten, Senior Reactor Inspector
A. Konkal, Contractor
A. Prada, Contractor
M. Singletary, Reactor Inspector
Approved By:
Gerald J. McCoy, Chief
Engineering Br 2
Division of Reactor Safety
SUMMARY
The U.S. Nuclear Regulatory Commission (NRC) continued monitoring the licensees performance by conducting a cyber security inspection at Vogtle Electric Generating Plant, in accordance with the Reactor Oversight Process. The Reactor Oversight Process is the NRCs program for overseeing the safe operation of commercial nuclear power reactors. Refer to https://www.nrc.gov/reactors/operating/oversight.html for more information.
List of Findings and Violations
No findings or violations of more than minor significance were identified.
Additional Tracking Items
None.
INSPECTION SCOPES
Inspections were conducted using the appropriate portions of the inspection procedures (IPs) in effect at the beginning of the inspection unless otherwise noted. Currently approved IPs with their attached revision histories are located on the public website at http://www.nrc.gov/reading-rm/doc-collections/insp-manual/inspection-procedure/index.html. Samples were declared complete when the IP requirements most appropriate to the inspection activity were met consistent with Inspection Manual Chapter (IMC) 2201, Security Inspection Program for Commercial Nuclear Power Reactors. The inspectors reviewed selected procedures and records, observed activities, and interviewed personnel to assess licensee performance and compliance with Commission rules and regulations, license conditions, site procedures, and standards.
SAFEGUARDS
71130.10 - Cybersecurity
The inspectors reviewed implementation of Vogtles Cyber Security Plan (CSP) and focused on evaluating changes to the program, critical systems, and CDAs.
Cybersecurity (1 Sample)
- (1) The following IP sections were completed and constitute completion of 1 sample:
03.01, Review Ongoing Monitoring and Assessment Activities
03.02, Verify Defense-in-Depth Protective Strategies
03.03, Review of Configuration Management Change Control
03.05, Evaluation of Corrective Actions In addition to the systems and programs that have been added or modified since the last cyber security inspection, the following systems were selected for inspection.
Unit 1
Plant Security Computer
Main Feedwater Control
Integrated Plant Computer Unit 2
Plant Security Computer
Integrated Plant Computer
INSPECTION RESULTS
No findings were identified.
EXIT MEETINGS AND DEBRIEFS
The inspectors verified no proprietary information was retained or documented in this report.
On June 30, 2022, the inspectors presented the cyber security inspection results to Mr.
Rob Norris and other members of the licensee staff.
DOCUMENTS REVIEWED
Inspection
Procedure
Type
Designation
Description or Title
Revision or
Date
CR 10391208
07/27/2017
CR 10749534
10/28/2020
CR 10754591
11/17/2020
CR 10760564
2/14/2020
CR 10774702
2/15/2021
CR 10824319
09/01/2021
CR 10863223
03/02/2022
CR 10863229
03/02/2022
CR 10863234
03/02/2022
CR 10870501
03/31/2022
Corrective Action
Documents
CR 10889502
06/21/2022
CR 10890966
06/28/2022
CR 10891046
06/28/2022
CR 10892492
07/01/2022
CR 10892494
07/01/2022
Corrective Action
Documents
Resulting from
Inspection
CR 10892495
07/01/2022
Plant Alvin W. Vogtle Cyber Security Network Pathways
Ver. 2.1
AX3AQ11-20060
Ver. 1.0
Drawings
AX5AB05-20024
IPC System Functional Block Diagram
Ver. 1.0
DCP SNC656039
Unit 1 IPC Cyber Security Upgrades
Ver. 8.0
Engineering
Changes
DCP SNC656041
Ver. 8.0
LVL 3 Checkpoint SYSLOG Logs
06/28/2022
LVL 3 Checkpoint IPS Logs
06/28/2022
Southern Nuclear Operating Company Cyber Security Plan
Ver. 3.0
Vogtle CDA List
03/15/2022
AX3AQ11-20306
Ver. 1.0
AX5AB05-20566
Ver. 1.0
AX5AB05-20580
Ver. 1.0
AX5AB05-20583
Ver. 1.0
Miscellaneous
CDA-VNP-11306-
008
Ver. 3.0
Inspection
Procedure
Type
Designation
Description or Title
Revision or
Date
CDA-VNP-11623-
001
Ver. 4.0
CDA-VNP-11623-
2
Ver. 1.0
CDA-VNP-2021-
Q04-VUL
03/06/2022
CDA-VNP-A1627-
010
Ver. 5.0
CDA-VNP-A2502-
008
Ver. 7.0
CDA-VNP-A2502-
011
Ver. 3.0
CDA-VNP-A2502-
013
Ver. 2.0
CDA-XNP-EISAC-
CB132522-VUL
06/03/2021
NMP-GM-014-004-
F02
07/27/2017
PMMD-VNP-KIOSK
Ver. 2.0
SNC1115015
Ver 1.0
SNC1115015J001
Ver. 5.0
SW-VNP-
2502C5BIDMCFW-
Ver. 3.0
SW-VNP-
2502C5BIDMCFW-
Ver. 2.0
SW-VNP-
A2502C5BIDPCFW-
Ver. 3.0
SW-VNP-
A2502C5DMZF-FW
Ver. 1.0
00008-C
Plant Lock and Key Control
Ver. 19.1
Procedures
17020-01
Annunciator Response Procedures for ALB 20 on Panel
Ver. 58.2
Inspection
Procedure
Type
Designation
Description or Title
Revision or
Date
1B2 on MCB
NMP-AD-005
Insider Mitigation Program (IMP) / Access Authorization
Ver. 9.2
NMP-EP-305
Equipment Important to Emergency Response (EITER)
Ver. 5.0
NMP-EP-305-GL03
VEGP Equipment Important to the EP Function
Ver. 6.4
NMP-ES-049
Maximo Equipment Management Data Control
Ver. 4.9
NMP-ES-095
Interface Procedure for IP-ENG-001, "Standard Design
Process"
Ver. 10.1
NMP-GM-006
Work Management
Ver. 20.2
NMP-GM-007-002
Plant Control Software
Ver. 7.0
NMP-GM-014
Cyber Security for Digital Plant Systems
Ver. 17.2
NMP-GM-014-004
Cyber Security Incident Response for Critical Digital
Assets Instruction
Ver. 9.2
NMP-GM-014-007
CFR 73.54 Critical Digital Asset (CDA) Identification
Instructions
Ver. 14.2
NMP-GM-014-009
Cyber Security Procurement Requirements
Ver. 8.0
NMP-GM-014-010
CDA Access Control
Ver. 8.4
NMP-GM-014-015
CDA Audit and Accountability
Ver. 7.3
NMP-GM-014-018
CDA Vulnerability Management
Ver. 10.4
NMP-GM-014-020
Control of Portable Media and Mobile Devices
Ver. 10.3
NMP-GM-014-022
Cyber Security Contingency Plan
Ver. 5.2
Self-Assessments TE 1099361
Pre-NRC Inspection CISA - Cyber Security
03/10/2022
SNC1060161
Cyber - BID Local Password Change
04/29/2022
SNC1068390
Security Computer SIEM Log Data Evaluation
06/27/2022
SNC1191121
Cyber 2502, A2502C5BIDRSD, ARC Sight Logger Review
06/15/2022
SNC1213661
06/21/2022
SNC932913
BID Local Password Change
05/01/2019
Work Orders
SNC945307
BID Local Password Change
11/13/2020