ML20151M550
| ML20151M550 | |
| Person / Time | |
|---|---|
| Site: | Peach Bottom  |
| Issue date: | 07/15/1988 |
| From: | PECO ENERGY CO., (FORMERLY PHILADELPHIA ELECTRIC |
| To: | |
| Shared Package | |
| ML20151M261 | List: |
| References | |
| NUDOCS 8808050232 | |
| Download: ML20151M550 (14) | |
Text
- - ----a e _ ____ 2 . s_-c -- - - - - - - - - - - --,.
.g - .
o' ,
4 .
4 Peach Botton Atomic Power Station Security Problem Root Cause Assessment July 15, 1988 Philadelphia Electric Company l 2301 Market St.
i Philadelphia, PA 19101
.1 1
1 1
i I
l
)
'i Prepared by:
i i
j i Independent Safety Engineering Division
] Nuclear Quality Assurance l
! .mTF0 80 5 o 2. 3 ;t -
1 A <<< , / a ~ / t,o o g:-
- 77A#- ..--.- ,- ----..--
l-.i ,.
1-Table of Contents Section Title Pagg Executive Summary i Table of Contents 1 1 Introduction 2 2 Background 2 3 Approach 2 :
4 Causative Factors 3 A. Culture and Attit"dinal Influences 4 B. Roles, Responsibilities, and Accountabilities 4 C. Management Policy and Implementation 6
- 0. Contractor Peisonnel Issues 9 l 5 Conclusions 9 l l
Appendices A Team Member Capsule Resumes A-1 B Personnel Interviewed B-1 i C An Extract from the Previous Root Cause Assessment Report Dated June 17, 1987 C-1 !
l l
l i
I
'l
t 1.
Executive Summary
(
1 Philadelphia Electric Company (PEco) is licensed by the U.S. Nuclear Regulatory Commission (NRC) to opercte two nuclear power reactors (Units 2 and
- 3) at the Peach Bottom Atomic Power Station (Peach Bottom) located near Delta.
Pennsylvania. in response to a June 9, 1980 briefing by PECo to the NRC of the results of the Nuclear Quality Assurance (NQA) April 1988 audit of the Peach Bottom security functions, the NRC requested a determination of the root causes of the continuing security problems at Peach Bottom since 1984. PECo committed to completing this analysis in a letter to the NRC dated June 17, 1988.
On June 20, 1988, PECo assembled a team composed of members with management, and nuclear security experience within the Independent Safety Engineering Division (ISED) of NQA. The team was tasked to conduct a root cause assessment addressing the security and management functions as they related to Peach Bottom focusing on the period 1984 to the present.
The Peach Bottom Plant started operation during a period of minimum security requirements. Rule making and the issuance of regulatory requirements (10CFR73.55) in the late 1970's required PECo to develop a physical security plan, obtain NRC's approval, retrofit security facilities and equipment, expand and upgrade the guard force, and implement new processes and procedures at the plant. The physical changes were completed within the re"Jired 18 month implementation period.
In February 1984, Peach Bottom hart re:eived a SALP 1 rating in security from the NRC. In May 1985, NRC changed its assessment to a SALP 3 based on PECo's performance during the intervening period. The SALP 3 rating was again assessed in January 1986. In May 1987, the NRC assigned a SALP 2 rating.
The information obtained during the document reviews, interviews, and observations, was analyzed by team members to identify recurring themes or signs of comonality of cause or effect. The significant information was sorted into general problem areas and specific problem statements were developed. The specific problems statements were then evaluated to identify potential root l 4
causes. Potential root causcs were tested to determine their validity.
3 As a result of the information obtained and the analysis made, the team has concluded there are three primary root causes identified as the major contributors to security problems at Peach Bottom in the 1984 to present time frame. They are:
o A minisua compliance philosophy coupled with an internally l developed and held narrow and liberal interpretative rationale toward i security regulations and requirements.
i o Fragmented and widely different understandings of the scope of and the responsibilities for various elements of the Peach Bottom Security Program. l I
o An inappropriate and ill-advised "htrds-off' philosophy toward the ;
security contractor and ineffective f.*turity contract management.
i l l
11 -
These root causes, which when viewed individually any have had minimal impact, have a combined arvi interrelational effect, and have together tapacted the implementation of the Peach Botton Security Program. The traditional PECo culture, as noted from the previous root cause report, has nurtured and sustained the acceptance of these conditions.
Although, as a result of the 1987 shutdown, there have been significant changes in behaviors, attitudes, management structure, and approaches to management throughout the Peach Bottom and PEco Nuclear Organization, they have not yet impacted upon or significantly changed the three root causes identified in this analysis as they relate to the cecurity function.
The focus of the analysis tea.t was the Peacl Bottom Security Program.
However, many elements aA.assed were corporate in nature and comon to both Peach Bottom and Limerick 6enerating Station. Attention to the resolution of !
the root caut- areas in a corporate approach would therefore be expected to enhance and benefit the continued stability of the Limerick Security Program, )
i l
i l
l
%.. ~:
~
. . -t-i
- 1. INTRODUCTION Philadelphia Electric Company (PECo) is licensed by the U.S. Nuclear Requiatory Comission (NRC) to operate two nuclear power reactors (Units 2 and 3) at the Peach Bottom Atomic Power Station (Peach Botton) located near Delta, Pennsylvania. On June 9,1988, PECo briefed the NRC on the results of the Nuclear Quality Assurance (NQA) April 1988 audit of the Peach Bottom security functions. In a letter to the NRC dated June 17, 1988. PECo comitted to performing a root cause analysis of the security problems at Peach Bottom since 1984.
On June 20, 1988, PECo assembled a team, composed of members from PECo and Management Analysis Company (MAC) with management and nuclear security experience, and under the leadership of the Manager. Independent Safety Engineering Division (ISED), NQA. Brief resumes of team members are provided in Appendix A. The team was tasked with conducting a root cause
' assessment addressing the security and management functions as they rented to Peach Bottom, focusing on the period 1984 to the present. This report documents the results and conclusions of that assessment.
- 2. BACKGROUND 1
The Peach Bottom plant started operation during a period of minimal security requirements. Rulemaking and the issuance of regulatory !
requirements (10CFR73.55) in the late 1970s required PECo to develop a physical security plan, obtain NRC appreval. *etrofit security facilities and equipment, expand and upgrade the guard force, and implement new processes and procedures at the plant. The physical changes were completed within the required implementation period.
In February 1984, Peach Bottom received a SALP rating of 1 in security from the NRC. In May 1985, the NRC assigned a SALP rating of 3 based on PECo's performance during the intervening period. The SALP rating of 3 was again assessed in January 1986. In May 1987, the NRC assigned a SALP rating !
of 2.
l In May 1988, the results of a PECo internal Claims / Security Division investigation and an HQA audit of the security function focused management's attention on problems in the execution of the security program. PECo management decided to conduct a root cause assessment of those problems.
- 3. APPROACH The assessment team's information gathering process included document reviews, interviews, and observations. The documents and correspondence reviewed, nominally for the period 1984 to the present, included the following:
. Peach Bottom Security Plans Physical Security Plan (PSP)
Training and Qualification Plan (T&QP)
Safeguards Contingency Plan (SCP)
hi . .
.s
.s.
. NRC correspondence (inspection reports, enforcement letters. SALP reports) and PEco responses
. NQA audit reports and responses
. Claims / Security Division audit reports
. Claims / Security Division investigation report, dated April 15, 1968
. Resumes of guard force contractor supervision
. Internal PECo report "Proposal for a Nuclear Security Section," dated November 14, 1986, by R. Weindorfer.
PECo/ Burns security force "contract" (specifications, purchase order, and amendments)
Interviews were conducted with persons knowledgeable of the past and present operations of the security functions at Peach Bottom. Those interviews included both PECo corporate and Peach Bottom site personnel, as well as guard force contractor, Burns International Security Services Inc.
(Burns), personnel. Personnel interviewed are listed in Appendix 8.
Observations were made of current Peach Bottom security activities both at the corporate office and at the site.
The information obtained during the document reviews, interviews, and observations was analyzed by team members to assess its implications, particularly with regard to recurring problems and signs of commonality of cause or effect. In an iterative process, the si sorted into categories of similar problem areas. gnificant information The information was in each of the general areas was then analyzed. Based upon the team's collective experience and judgrent, the causative factors affecting the security program were identified and are presented in Section 4 Again in an iterative process, the causative factors were then evaluated to identify root causes. The team's conclusions are documented in Section 5.
- 4. CAUSATIVE FACTORS As indicated in the preceeding section, the information gathered was grouped into related categories for analysis. The four general categories, each of which is discussed below 6re:
Culture and Attitudinal Influences
. Management Policy and Implementati:n
. Roles, Responsibilities, and Accountabilities
. Personnel issues Within each of these general categories, specific causative factors are identified.
1 l
A. Culture and Attitudinal Influences Prior to the March 1987 shutdown, the security function operated within essentially the same organizational culture / environment as that found and reported in the "Problem Root Cause Assessment of Peach Bottom Shutdown" dated June 17, 1987. An extraction of a portien of the June 17. 1987 report is provided in Appendix C to provide a basis for understanding the impact of the organizational culture /enviroraent on the specific problematic findings in the security area.
This extraction must be read with the understanding that it describes the culture and environment that existed at PEco at the time of or prior to the March 1987 shutdown.
Managemnt changes made at Corporate and at Peach Bottom have had a significant impact on behaviors, attitude, and culture in the intervening time period. While management changes in the security arca occurred much later than in other groups, the implementation of a cultural change / team building action plan is expected to produce similar results in the near future.
B. Roles. Responsibilities, and Accountabilities Within PECo there are two differently held perspectives of the definition and scope encompassed by the nuclear security program.
Some believe it is limited to the people, processes, and equipment required by 10CFR73.55. Others believe it also includes all or l portions of related activities or programs such as fitness for duty; plant access authorization; interdiction of alcohol, drugs, and other contraband; and asset protection. ,
j Responsibility for security program policy, management, implementation, support, and oversight has been divided in the past ,
and is currently split among at least the following organizations.
Claims / Security Division Legal Department Nuclear Quality Assurance .
Nuclear Review Board '
Nuclear Engineering Department Nuclear Services Department
. 1.icensing Section
. Nuclear Plant Security Section
. Information Resource Management Peach Bottom
. Plant Organization
- Plant Operations Review Comittee
- Operations
- Maintenance
. Project Organization
. Support Organization
- Site Security
- Contractor Security Force
There has been no single point accountability for management of the security program to ensure that all aspects of the program are accomplished. In the absence of specifically delineated roles and responsibilities, there have been gaps, overlaps, and a lack of accountability. The areas in which these issues exist include policy changes, program goals, security plan amendments, tracking and ensuring resolution of identified deficiencies, and hardware modifications. Administrative controls did not ensure appropriate review, approval, and control of security plan changes, and security-related hardware maintenance and modifications.
2 There is no on-site individual with "system engineer" responsibilities for installed phy11 cal security hardware and systems as there are for other plant systems. As a result, maintenance and modifications affecting security systems have been performed without I appropriate determination of the impact of the work.
1 Information distribution and feedback regarding security program activities have been inhibited by safeguards information handling requirements, and tha sensitivity of information. A review of documents designated as safeguards information indicates an overly
, broad application of this designation to non-safeguards information.
H The lack of agreed upon lines of responsibility, coupled with the j
unique safeguards and sensitive infom1ation handling requirements,
- and the lack of appropriate storage facilities for such information 1
within some of the various involved organizations, have resulted in inconsistent feedback on audit / inspection findings, and on occasion.
in multiple layers of menagement being unaware of identified problem areas and resolution status.
l i
There is confusion as to the specific roles of various organizations.
Some view the Claims / Security Division as having an overall policy.
l making role and conversely others view it as having only an oversight l and advisory role. Similarly differing views are held regarding the t
role of corporate Nuclear Plant Sacurity Section.
. The authority and responsibility of specific individuals is also
! subject to different understandings. Some b211 eve the Shift Security i Assistant, Chief Security Coordinator, and Nuclear ScCurity i Specialist have line management / supervisory responsib1lity for directing the activities of the guard force, while others insist they have only oversight responsibility. The Shift Manager's role in security is not clearly understood by guard force contractor l
personnel, or by PECo site and corporate Nuclear Security personnel.
I There are multiple understandings of the role of the on-site l Claims / Security Division investigator.
Responsibility for managing the security force contract and the activities of the contracted security force is not clear. Further, the contract is unclear as to which responsioimies a e delegated to i the contiactor and which are retained by PECo. Prior PiCo management I has stated that it hired nuclear security experts and relied on the contractor to provide the expertise to ensure that the requirement *
! of 10CFR73.55 and the Peach Bottom security plans e,ere met. The existing purchase specification makes reference to these documents.
-s- ,
However, 10CFR73.55 specifically requires that PEco, not the contractor, be responsible for the security program; management stated that for several years after issuance of the Peach Botton Physical Security Plan the contractor was not provided a copy; and i PEco personnel prepare and maintain the procedures that the contract guard force is expected to follow. Inconsistencies in understanding and implementing a clear management position have led to inconsistencies in contract management and unclear responsibilities !
i l allowing some PEco managers to state that they believed that they !
were not responsible for identified problems.
i Failure to establish clearly who is responsible for managing the contract and the contractor has resulted in multiple sources of :
direction to the security contractor and confusion on the part of :
contractor personnel as to who in PECo has the authority to direct guard force operational activities, In some cases, directions from one PECo employee / group have been cuantermanded by another PECo j employee /grcmp.
To avoid "co-employer" status (a previously litigated labor relations
' matter), PECo management has stated that PECo employees must not <
direct the activities of contractor employees and has assigned
! position titles that do not reflect supervisory authority 1
(t,pecialist, coordinator, assistant). The terms oversight and .
i i overview are consistently used in describing the interface between '
the PECo site security organization and the contractor. This policy has contributed to misunderstandings of PECo's responsibility to manage the guard force and has limited the "oversight" role to one of l t
quality control rather than proactive management direction, C. Management Policy and luclementation l 1
PECo managers responsible for the nuclear security program in the 3
i past acknowledged that there was a policy of committing to and doing only the minimum that was necessary to achieve compliance with
! physical security requirements in their opinion, to do more was 4
viewed as unnecessary from either a security or regulatory standpoint l and, therefore, economically undesirable. They indicated that i
decisions and actions related to the physical security program at i
Peach Bottom, including the evaluation of identified problems and I
determination of corrective actions, had been limited to achieving i
the minimum compliance goal. Historically, the individuals responsible for interpreting physical security requirements tended to 1 meet the "letter of the law" rather than the intent, and to manage i
- the physical security program reactively rather than proactively. {
They also expressed concern that NQA was auditing to requirements i
i that did not exist. i i
To illustrate the "letter of the law" approach, four security force members were task tested in the use and handling of required security equipment as part of an NQA audit and all failed. Even though the i individuals were requalified before being reiurned to security j
duties, both a PECo and a contractor super,isor expressed the belief ;
that the individuals had not been "unqualified." They based this '
belief on the fact that the individuals had previously qualified with l the equipment and that the task testing was not part of a ' required"
l
.} .
i annual requalification. Their position implied to the team that
{
"qualified" meant having a piece of paper in the file that documented '
qualification, and that an individual's qualification was unaffected by a demonstrated inability to perform the task in the interval between required requalifications.
For many years, many of the personnel with key roles in the implementation of the Peach Bottom physical security program (from the time 10CFR73.55 became effective) were the saan individuals who were instrumental in the installation of the security hardware and systems, establishment of the guard force, and writing of the ,
security procedures. These individuals were directly responsible for developing the Peach Bottom physical security plans and finalizing the content of the plans with the NRC. Further, the individuals constituted for a time, PECo's total nuclear physical fecurity expertise. This is no longer the case. Many of the individuals responsible for establishing the Peach Bottom physical security program have been reassigned as a result of the reorganization since the shutdown of Peach Bottom. Responsibility for managing security s at Peach Bottom rests with the Support Manager who reports to the I site vice president. J Some of these same individuals were responsible for evaluating and responding to potential or actual deiiciencies and determining what, if any, corrective action was necessary. Being the authors and ;
having obtained NRC approval of the security plans, there was no I questicn in the minds of these individuals as to what was intended by the plans. Accordingly, their responses to identified problem? and i
corrective action recomendations from internal and exterr:al oversight groups, of ten based on a different measure of program performance, were often argumentative and defensive. When corrective action was taken, it appears to have addressed only the specific example problem.
cited in the finding rather than fixing the underlying This approach does not reflect an understanding of "rising levels of expectation" of what constitutes an acceptable security program. This "rising level" is exemplified by the following l i
description of the Limerick security program, contained in the SALP dated July 7, 1988: '
. . . in excellent performance and implementetion of a security program that is oriented toward meeting the NRC's nuclear plant security objectives rather than merely regulatory compliance."
Correcting security problems has been afforded a low priority in comparison to nuclear safety and power production problems as evidenced by the resources applied to and the timeliness of corrective actions.
In contrast, oversight personnel expressed concern that security requirements were not being met, that the line and staff organizations were argumentative and defensive and not correcting problems. The ideological differences concern the scope of the program and the performance standards against which the acceptability or adequacy of the program is to be measured.
. . ~. .. :
.o The assessment team reviewed and comparad the NRC inspection and SALP reports with the NQA audit reports.
NRC inspection reports and SALP reporte from May 1985 to just before the NQA audit of security in April 1988 identified only three violations of MRC requirements. There were, however, repected references to lack of management attention, lack of aggressive management, and lack of management oversight of the contractor.
The 1986 SALP report indicated that, while the SALP rating was 3, there had been increased management attention and, the report acknowledged an improving trend. Between this and the next SALP report there were no violations identified and the SALP rating for security for the most recent period was a 2. The most recent report acknowledged several improvements and PECo's desire to implement a high quality program with a well qualified end professional force.
The report did address the NRC's concern with the failure of PECo to exercise appropriate oversight of the security contractor.
Subsequent to that SALP report there have been threc violations, all severity level 4, and another reference to concern about the performance and lack of management oversight of the security contractor.
For the same period, the NQA audit reports collectively contained eight findings and thirty-three recommendations. While all eight findings represented conditions which should be addressed, only two findings (one finding in each report classified as Significant Noncompliance Reports, SNCRs)) represe(nt actual noncompliance with the security plans.
The others can be classified as follors:
One involved a hardware operational weakness identified by the auditors and appropriate compensatory measures were implemented in accordance with the plan.
One was written against HUREG 1045, two were written against elements of the Peach Bottom Quality Assurance Plan and one was written against 10CFR50, Appendix B, Criteria !!, even though there is no comitment that the se:urity program meet the cited references.
One identified that drawings referenced in the security plan should be available for use in emcrgencies, even though it was not a specific plan requirement.
The repetitive manner in which findings are presented in the audit reportsare.
really gives the appearance that there are more problems than there The numerous recomendations contained in the audit reports are directed at improving effectiveness and efficiency in the security program.
However, acceptance and implementation is not required t roe a compliance standpoint.
I
6; ,
l
-9 The 1988 audit report contains a conclusion that the overall effectiveness of the security program did not yield the level of .
protection against radiological sabotage as delineated in l 10CFR73.5S(a). The problems identified in the audit report led the auditor and his technical consultants and the auditor's management to reach that conclusion. The assessment team does not share that judgement based on the information presented in the audit report. It should be recognized that substantial judgement is required to be exercized in making such determinations and that differing conclusions can be reached by competent technical experts reviewing the same facts. ,
The various problems with the audit reports have resulted in reported and observed organizational and interpersonal conflict and defensiveness and argumentativeness for those responsible for security program management.
D. Contractor Personnel issues The failure rate during recent task testing of Security Force Members
- (SFMs) shows a need to assess the training program. The current training program is impacted by high personnel turnover rates, minimal space allotments, increasing curriculum requirements, and an
- "attendance based" versus "performance based" training structure.
The contract specifies that the contractor provide a training program in accordance with the Training and Qualification Plan (T&QP).
However, the T&QP provides only minimal guidance for the content of the training program and PECo's overview or review of Burns lesson plans appears to be minimal.
1 The co-employer issue discussed earlier, contractor status, and general feeling that security requirements get in the way of "doing the job" have orevented the integration of the guard force into the site workforce team. Different treatment, real or perceived, of PECo employees and contractor personnel has created a feeling of being '
"second class citizens" among the guard force members.
! 5. CONCLUSIONS 1
A review of the Peach Bottom compliance history from 1984 to present
' reveals no progrannatic breakdowns of compliance with 10CFR73.55. It does, however, show continuing NRC discussion and coment about lack of l management performance, action, aggressiveness, and control.
1 Based upon information obtained during this assessment and the analysis i made, the team has identified three root causes as the major contributors i to the management concerns as expressed by the NRC. They are:
o Divergent understandings of the scope of and responsibilities for various elements of the Peach Botton Security Program as well as the fragmentation of those responsibilities.
l o Inter /intraorganization philosophical differences with respect to the standaro's against which acceptability of the security program is measured (sinhmJu/"letter of the law" standards vs. agreement on what l t
constitutes an appropriate level of performance).
.D.
1 o A ' hands-off" philosophy toward the security contractor and ineffective PEco management of the security contract.
These root causes, which when viewed individually may have had minimal I impact, have a combined and interrelational effect. Together they have !
impacted the productivity and effectiveness of management of the Peach Bottom security program. The traditional PECo culture, as noted from the previous root cause report, has nurtured and sustained the acceptance of these conditions. ,
l As a result of the 1987 shutdown, there have been significant changes in ,
behaviors, attitudes, management structure, and approaches to management '
throughout the Peach Bottom and PECo nuclear organizations. Recent changes hatt, been made to the organizational structure and personnel assignments in the security program and cultural change / team building action plans have been developed. In addition, renegotiation of the guard security force contract is underway. It is the teaf s assessment, however, that further i management attention will be required to address the three root causes identified in this assessment as they relate to the security function.
The focus of the analysis team was the Peach Bottom Security Program, !
however some elements addressed were corporate in nature. Attention to the i resolution of these root cause areas corporately would be expected to '
further enhance the Limerick security program. 1
> l i
I i
i 1
l J
, l l Appendix A l l
ASSESSIGT TEAM CAPSULE REstMS J. Theodore Robb, Manager, Independent Safety Engineering Division. Team Leader, has 21 years of experience with PECo. Assigned as an engineer in the Mechanical Engineering Division for eight years, he spent two years in the Engineering and Research Department Quality Assurance organization with responsibilities for Limerick activities. Mr. Robb served for five years in Corporate Analysis and subsidiary organizations and for five years was responsible for the Engineering and Research Department nuclear licensing activities. He was appointed to his current position in November 1987.
Carl E. Alderson, Management Analysis Company, Team Member, has over 29 years of experience in Instrumentation and control systems, simulation systems, and in engineering, coerations, testing, training, security, and regulatory activities related to military and comercial nuclear power plants and research reactors.
During nine years with the NRC in Region II, he held various positions including Chief, Physical Security Section, and Director, Investigations and Enforcement.
He has extensive experience in the investigation and assessment of conditions and events at reactor sites and in the development and evaluation of management systems and administrative controls.
Roger J. Robinson, Management Analysis Company, Team Member, has over 25 years of experience in a broad range of technical, engineering, and business disciplines, including four years with the Defense Atomic Support Agency. His expertise and accomplishments are in consulting and management audits, security, design and field engineering, nuclear power operations, project construction. '
and in the hwan f actors and cultural aspects of these activities. He has .
participated in more than 25 management alagnostics and has also inspected f security, emergency response, and intrusion threat capabilities of nuclear facilities. He has provided support to federal agencies for VIP protection, physical security operations and instruction in security control and administration.
Howard E. Rossner, Management Analysis Company Team Member, has 35 years of experience in the application and theory of physical security and technical security, including service as Chief of Protective Security at the DOE Oak Ridge Operations Office. His accomplishments have included develcping, inspecting, and directing ongoing programs for the protection of nuclear plants involving j
physical, personnel, and technical security. He has extensive knowledge of the principles, theories, methodologies, and techniques of physical protection, cargo security, guard protection, and deployment and contingency planning, t including assessing human factors. He was responsible for design, implementation, and review of security programs during his 40 year career with i the Department of Energy and predecessor agencies. He has assessed, audited.
and developed improvement programs for existing nuclear security organizations, l i
1 l
- A1 -
]
. Appendia B PE M L INTERVIEM B l
PFCo E. G. Alwood, PBAPS HPES Coordinator, NQA M. Bruecks, Shif t Security Assistant, PBAPS G. A. Bird, Auditor, NQA M. J. Cooney, Assistant to the VP, Nuclear Engineering C. J. Cuthbert Auditor, NQA R. S. Fleischmann Assistant to the Manager, Engineering Division, Nuclear Engineering J. F. Franz, Plant Manager, PBAPS D. R. Helwig, General Manager, NQA B. Kirkpatrick, Auditor, NQA J. D. McGoldrick, Manager, Claims / Security Division, Legal R. H. Moore, Assistant General Manager, NQA D. R. Meyers, Support Manager, PBAPS J. C. Oddo, Nuclear Security Specialist, PBAPS J. C, Spinelli, Engineer Engineering Division, Nuclear Engineering R. S. Sweeney, Investigator, Claims / Security Division, legal S. Q. Tharpe, Chief Security Coordinator, PBAPS D. B. Warfel, Shift Manager, PBAPS R. J. Weindorfer, Director, Nuclear Plant Sicurity Section, Nuclear Services Burns S. Claiborne, Security Force Member G. Miller, Site Manager S. Spencer, Lieutenant E. Stegman, Security Force Member J. Wilson, Sergeant i
t i
l l
l I
i
- B1 -
i .
i Appendix C M EXTRACT FR(31 THE ROOT CAUSE ASSESSHT REPORT DATED JM 17. 1987 (1)
Overview and History Organizatienal culture / environment is not an easily describable element, but it is a very powerful determinant of employee actions and management / employee relationships. It is the unique blend of values, beliefs, attitudes, norms, practices, myths, history, self image, etc., that becomes "the way things are done at PFCo." It creates meaning and reference points for organization members. It is also most differentiates an organization from other organizations.
PECo has developed a closely knit, almost completely homegrown, technically oriented culture. The vast majority of its members are hired at entry levels, and the company makes a strong comitment to employment security. Generally, only engineers progress up the management chain and in the nuclear areas, there appears to be greater emphasis placed on technical management than on people management skills. Management succession practices and long-term management assignments in the same or successive positions result in a self-perpetuating management system.
The positive effects of this culture include:
. Loyal and dedicated emplojees Management and employees who are very knowleogeable about PECo history and the company's way of doing business An informal network that does at times work very effectively and efficiently because personal work histories and relationships encourage accessibility among PECo management and personnel
. Pride in company history and performance
. Comparatively low employee turnover The negative effects of the PECo culture, as they have been identified with respect to Peach Bottom operations, include:
A lack of new managerial perspectives from outside the PECo and additionally at Peach Bottom, a lack of new perspectives from inside the company
\
Limited number of management role models to expsnd PECo's management !
effectiveness, especially in Nuclear Operations 1
- C1 -
1
~
~
. . Minimal infusion of professionals with nuclear industry experience into the technical and managerial ranks resulting in a limited exposure to the critical differences between the established Peach Bottom way of doing business and the constantly evolving requirements of the nuclear business
. A tendency on the part of Nuclear Operations personnel to rest on laurels of past technical accomplishments and competencies and to resist change Management which focuses on technical problem solving without sufficient cttention or skill applied to organizational and people concerns A lack of performance motivation on the part of some employees and an erosion of management control over disciplinary actions because of the widespread perception in Nuclear Operations that no one is ever effectively disciplined or fired at Peach Bottom Employees with very long memories about past management practices and personnel concerns who find it difficult to focus on "the way things are now" rather than "the way things were then" There is a powerful Peach Bottom sub-culture in Nuclear Operations. It has its roots in the operation of Unit I under early regulatory conditions that were less prescriptive than today's requirements. Judged by tiie standards of the time, the early years of Units 2 and 3 operatior,were regarded as models of professional nuclear operational perform 3nce.
J 1
(1) from pages 3 through 5 of Problem Root Cause Assessment of the Peach Bottom l
Shutdown dated June 17. 1987 1
- C2 - !
- . _ - - _ _ , -.