Similar Documents at Surry |
|---|
Category:Inspection Plan
MONTHYEARIR 05000280/20240052024-08-26026 August 2024
Updated Inspection Plan for Surry Power Station, Units 1 and 2 (Report 05000280/2024005 and 05000281-2024005), Rev 1
ML24179A2932024-07-0101 July 2024
Notification of Inspection and Request for Information for NRC Problem Identification and Resolution Inspection
ML24141A2862024-05-22022 May 2024
Information Request for the Cyber Security Baseline Inspection, Notification to Perform Inspection 05000280/2024403 and 05000281- 2024403
ML24115A1952024-04-24024 April 2024
Notification of Surry Power Station Comprehensive Engineering Team Inspection - U.S. NRC Inspection Report 05000280/2024011 and 05000281/2024011
ML24144A2432024-03-0808 March 2024
002 Radiation Safety Baseline Inspection Information Request
IR 05000280/20230062024-02-28028 February 2024
Annual Assessment Letter for Surry Power Station, Units 1 and 2 - NRC Inspection Reports 05000280/2023006 and 05000281/2023006
IR 05000280/20230052023-08-23023 August 2023
Updated Inspection Plan for Surry Power Station, Units 1 and 2 (Report 05000280/2023005 and 05000281/2023005)
IR 05000280/20220062023-03-0101 March 2023
Annual Assessment Letter for Surry Power Station, Units 1 and 2 - NRC Inspection Reports 05000280/2022006 and 05000281/2022006
ML22339A1582022-11-30030 November 2022
Requalification Inspection Notification Letter
IR 05000280/20220052022-08-24024 August 2022
Updated Inspection Plan for Surry Power Station, Units 1 and 2 (Reports 05000280/2022005 and 05000281/2022005)
ML22223A1192022-08-14014 August 2022
RP Inspection Document Request Letter Final
ML22168A0272022-06-15015 June 2022
Information Request for the Cyber-Security Baseline Security Inspection, Notification to Perform Inspection 05000280/2022404; 05000281/202240
IR 05000280/20210062022-03-0202 March 2022
Annual Assessment Letter for Surry Power Station, Units 1 and 2 (Reports No. 05000280/2021006 and 05000281/2021006)
ML22018A0292022-01-18018 January 2022
Region 2 RFI - 2022 Program Inspections
IR 05000280/20210052021-08-31031 August 2021
Mid-Cycle Letter Revised Updated Inspection Plan for Surry Power Station, Units 1 and 2 (05000280/2021005 and 05000281/2021005)
ML21239A0052021-08-26026 August 2021
Updated Inspection Plan for North Anna Power Station, Units 1 and 2 - (Report 05000280/2021001 and 05000281/2021001)
IR 05000280/20210012021-08-26026 August 2021
Updated Inspection Plan for Surry Power Station, Units 1 and 2 -(05000280/2021001 and 05000281/2021001)
IR 05000280/20200062021-03-0303 March 2021
Annual Assessment Letter for Surry Power Station, Units 1 and 2 NRC Inspection Reports 05000280/2020006 and 05000281/2020006
ML21061A0292021-03-0101 March 2021
2021 Sur - POV Inspection Information Request
ML21050A0352021-02-18018 February 2021
Radiation Safety Baseline Inspection Information Request
ML20315A2492020-11-0909 November 2020
Requal Inspection Notification Letter W Materials List
IR 05000280/20200052020-08-24024 August 2020
Updated Inspection Plan for Surry Power Station, Units 1 and 2 (Report 05000280/2020005 and 05000281/2020005)
ML20175A7802020-06-23023 June 2020
Heat Sink RFI
ML20092J5002020-04-0101 April 2020
Radiation Safety Baseline Inspection Information Request
IR 05000280/20190062020-03-0303 March 2020
Annual Assessment Letter for Surry Power Station, Units 1 and 2 - NRC Inspection Reports 05000280/2019006 and 05000281/2019006
IR 05000280/20190052019-08-27027 August 2019
Updated Inspection Plan for Surry Power Station, Units 1 and 2, NRC Report 05000280/2019005 and 05000281/2019005
IR 05000280/20180062019-03-0404 March 2019
Annual Assessment Letter for Surry Power Station, Units 1 and 2 - NRC Inspection Report 05000280/2018006 and 05000281/2018006
ML19057A1052019-02-26026 February 2019
License Renewal Phase 4 2019003 RFI - SD
ML18283A7332018-10-0101 October 2018
Rad Safety Inspection RFI
IR 05000280/20180052018-08-23023 August 2018
Updated Inspection Plan for Surry Power Station Units 1 and 2, NRC Report 05000280/2018005 and 05000281/2018005
ML18215A1252018-08-0303 August 2018
U2 ISI SGI 2018004 - Notification of Inspection and RFI (Public)
IR 05000280/20170062018-02-28028 February 2018
Annual Assessment Letter for Surry Power Station, Units 1 and 2 - NRC Inspection Reports 05000280/2017006 and 05000281/2017006, 05000280/2017402 and 05000281/2017402, 05000280/2017501 and 05000281/2017501
ML18037B1092018-02-0505 February 2018
Emergency Preparedness Inspection and Request for Information
ML17290A0592017-10-13013 October 2017
Radiation Safety Inspection Document Request
IR 05000280/20170052017-08-21021 August 2017
Updated Inspection Plan for Surry Power Station, Units 1 and 2 - Report 05000280/2017005 and 05000281/2017005
IR 05000280/20160062017-03-0101 March 2017
Annual Assessment Letter for Surry Power Station, Units 1 and 2 - Report 05000280/2016006 and 05000281/2016006
ML16307A1972016-11-0202 November 2016
Notification of Inspection and Request for Information for NRC Problem Identification and Resolution Inspection
ML16244A1262016-08-31031 August 2016
Mid-Cycle Assessment Letter for Surry Power Station, Units 1 and 2 - NRC Inspection Report 05000280,281/2016005
ML16062A2732016-03-0202 March 2016
Annual Assessment Letter
IR 05000280/20150052015-09-0101 September 2015
Mid-Cycle Letter for Surry Power Station Units 1 and 2 - NRC Assessment Report 05000280/2015005 and 05000281/2015005
ML15140A4142015-05-20020 May 2015
Notification of Inspection and Request for Information for NRC Problem Identification and Resolution Inspection
IR 05000280/20140012015-03-0404 March 2015
Annual Assessment Letter for Surry Power Station, Units 1 and 2 Report 05000280/2014001 and 05000281/2014001
IR 05000280/20140062014-09-0202 September 2014
Mid-Cycle Letter for Surry, Units 1 & 2, NRC Assessment Report 05000280/2014006, 05000281/2014006
IR 05000280/20130012014-03-0404 March 2014
Annual Assessment Letter for Surry Power Station, Units 1 and 2 - Report 05000280/2013001 and 05000281/2013001
ML13262A1812013-09-17017 September 2013
Notification of Inspection and Request for Information
ML13246A1352013-09-0303 September 2013
Mid Cycle Assessment Letter
ML13123A3552013-05-0202 May 2013
Notification of Inspection and Request for Information for NRC Problem Identification and Resolution Inspection
IR 05000280/20120012013-03-0404 March 2013
Annual Assessment Letter, Surry Power Station, Units 1 and 2, 05000280/2012001 and 05000281/2012001
ML12248A1232012-09-0404 September 2012
Mid Cycle Assessment Letter Surry 2012
ML1206506182012-03-0505 March 2012
EOC Report 22
2024-08-26
[Table view]
Category:Letter
MONTHYEARML24283A0702024-10-0707 October 2024
Annual Submittal of Technical Specifications Bases Changes Pursuant to Technical Specification 6.4.J
IR 05000280/20244032024-10-0303 October 2024
Cyber Security Inspection Report 05000280-2024403 and 05000281-2024403 Cover Letter (Public)
IR 05000280/20240102024-10-0202 October 2024
Biennial Problem Identification and Resolution Inspection Report 05000280/2024010 and 05000281/2024010
ML24270A0022024-09-25025 September 2024
Inservice Inspection Owners Activity Report (OAR)
ML24248A1712024-09-0303 September 2024
Proposed License Amendment Request - Temporary Service Water Supply to the Component Cooling Heat Exchangers
IR 05000280/20240052024-08-26026 August 2024
Updated Inspection Plan for Surry Power Station, Units 1 and 2 (Report 05000280/2024005 and 05000281-2024005), Rev 1
ML24219A2372024-08-23023 August 2024
Issuance of Amendment Nos. 319 and 319, Adoption of TSTF-577, Rev. 1, Revised Frequencies for Steam Generator Tube Inspection,
ML24207A0402024-08-21021 August 2024
Summary of July 17, 2024, Public Meeting - TS 3.7/3.14 AOT for SW Piping Maintenance
IR 05000280/20240112024-08-13013 August 2024
Comprehensive Engineering Team Inspection Report 05000280/2024011 and 05000281/2024011
ML24164A0012024-08-12012 August 2024
Proposed Alternative Relief Request V-1 Inservice Testing of Pressure Isolation Valves (EPID l-2023-LLR-0060)
IR 05000280/20240022024-08-0101 August 2024
Integrated Inspection Report 05000280/2024002 and 05000281/2024002
05000280/LER-2024-001, Troubleshooting Initiated Unknown Turbine Trip Feature in Control System2024-07-30030 July 2024
Troubleshooting Initiated Unknown Turbine Trip Feature in Control System
ML24165A2782024-07-17017 July 2024
Issuance of Amendment Nos. 318 and 318, Reclassification of Regulatory Guide 1.97 Variable for Low Head Safety Injection
ML24165A1232024-07-17017 July 2024
Proposed Alternative Relief Request P-1, P-2 Inservice Testing of Residual Heat and Containment Spray Pumps (EPID l-2023-LLR-0058)
ML24190A4192024-07-0808 July 2024
Inservice Testing (IST) Program for Pumps and Valves Revised Sixth IST Interval Start Date and Updated Technical Specifications References for Alternative Request V-1
ML24179A2932024-07-0101 July 2024
Notification of Inspection and Request for Information for NRC Problem Identification and Resolution Inspection
ML24178A2422024-06-25025 June 2024
2023 Annual Report of Emergency Core Cooling System (ECCS) Model, Changes Pursuant to the Requirements of 10 CFR 50.46
ML24177A2792024-06-20020 June 2024
Preparation and Scheduling of Operator Licensing Examinations
ML24166A0622024-06-18018 June 2024
– Proposed Alternative Relief Request P-3, P-4 Inservice Testing of Boric Acid, Component Cooling Water Pumps
ML24157A0542024-06-13013 June 2024
Audit Summary in Support of License Amendment Request for Proposed Reclassification of Low Head Safety Injection Flow Instrumentation Related to Regulatory Guide 1.97
ML24143A1622024-06-12012 June 2024
– Correction to Issuance of Amendment Nos. 297 and 280 and Surry Units 1 and 2, Correction to Issuance of Amendment Nos. 317 and 317, to Change Emergency Plan Staff Augmentation Times
ML24170B0532024-06-10010 June 2024
DOM-NAF-2-P/NP-A, Revision 0.5, Reactor Core Thermal-Hydraulics Using the VIPRE-D Computer Code
ML24141A2862024-05-22022 May 2024
Information Request for the Cyber Security Baseline Inspection, Notification to Perform Inspection 05000280/2024403 and 05000281- 2024403
ML24141A2512024-05-20020 May 2024
Proposed License Amendment Request - Reclassification of Low Head Safety Injection Flow Indication Regulatory Guide 1.97 Variable - Supplemental Information
ML24141A0482024-05-17017 May 2024
EN 56958_1 Ametek Solidstate Controls, Inc
ML24136A2302024-05-13013 May 2024
Core 1 Cycle 33 Pattern Mdr Revision 0
ML24130A2492024-05-0909 May 2024
Submittal of Information in Support of Surry Power Station Unit 1 Thermal Shield Flexure Replacement Campaign
ML24130A2032024-05-0909 May 2024
Proposed License Amendment Request Application to Revise Technical Specifications to Adopt TSTF-577, Revised Frequencies for Steam Generator Tube Inspections Supplemental Information
ML24130A1192024-05-0707 May 2024
Inservice Test Program for Pumps and Valves Sixth Interval Update and Associated Relief and Alternative Requests - Response to Request for Additional Information Regarding Alternative Request V-1
ML24142A3852024-04-30030 April 2024
2023 Annual Radioactive Effluent Release Report
IR 05000280/20240012024-04-30030 April 2024
Integrated Inspection Report 05000280-2024001 and 05000281-2024001
ML24122C6522024-04-30030 April 2024
Annual Radiological Environmental Operating Report
ML24122B3032024-04-29029 April 2024
Associated Independent Spent Fuel Storage Installation, Revision to Emergency Plan Report of Change
IR 05000280/20244022024-04-29029 April 2024
Security Baseline Inspection Report 05000280/2024402 and 05000281/2024402
ML24115A1952024-04-24024 April 2024
Notification of Surry Power Station Comprehensive Engineering Team Inspection - U.S. NRC Inspection Report 05000280/2024011 and 05000281/2024011
ML24054A0142024-04-22022 April 2024
Issuance of Amendment Nos. 297 and 280, and Surry Power Station Unit Nos. 1 and 2, Issuance of Amendment Nos. 317 and 317, to Change Emergency Plan Staff Augmentation Times
ML24108A1812024-04-15015 April 2024
Proposed License Amendment Request - Reclassification of Low Head Safety Injection Flow Indication Regulatory Guide 1.97 Variable Supplemental Information
ML24095A2172024-04-12012 April 2024
– Review of the Spring 2023 Steam Generator Tube Inspection Report
ML24088A2482024-03-26026 March 2024
Inservice Testing Program for Pumps and Valves Sixth Interval Update and Associated Relief and Alternative Requests- Response to Request for Additional Information
ML24087A2082024-03-22022 March 2024
Proposed License Amendment Request Addition of Containment Limiting Condition for Operation and Surveillance Requirements
ML24078A2642024-03-21021 March 2024
– Regulatory Audit in Support of License Amendment Request to Proposed Reclassification of Regulatory Guide 1.97 Variable for Low Head Safety Injection Flow Instrumentation
ML24087A1522024-03-18018 March 2024
Annual Changes, Tests, and Experiments Report Regulatory Commitment Evaluation Report
ML24023A5762024-03-0808 March 2024
Correction to Issuance of Amendment Nos. 315 and 315, Regarding Revised Emergency Plan for Relocation of the Technical Support Center
IR 05000280/20230062024-02-28028 February 2024
Annual Assessment Letter for Surry Power Station, Units 1 and 2 - NRC Inspection Reports 05000280/2023006 and 05000281/2023006
ML24032A4712024-02-20020 February 2024
Exemption from Select Requirements of 10 CFR Part 73 - Security Notifications, Reports, and Recordkeeping and Suspicious Activity Reporting
ML24051A1782024-02-19019 February 2024
Proposed License Amendment Request - Application to Revise Technical Specifications to Adopt TSTF-577, Revised Frequencies for Steam Generator Tube Inspections
ML24057A0612024-02-19019 February 2024
and Virgil C. Summer Power Nuclear Stations - Nuclear Property Insurance Coverage
IR 05000280/20230042024-02-0909 February 2024
Integrated Inspection Report 05000280/2023004 and 05000281/2023004
IR 05000280/20244012024-02-0606 February 2024
Security Baseline Inspection Report 05000280/2024401, 05000281/2024401 and 07200002/2024401
IR 05000280/20230102024-01-18018 January 2024
– Age Related Degradation Inspection Report 05000280-2023010 and 05000281-2023010
2024-09-03
[Table view]
Category:Request for Additional Information (RAI)
MONTHYEARML24141A2862024-05-22022 May 2024
Information Request for the Cyber Security Baseline Inspection, Notification to Perform Inspection 05000280/2024403 and 05000281- 2024403
ML24102A0682024-04-10010 April 2024
IST (z)(2) Hardship RR V-1 RCS Cold Leg, Lh Safety Injection Check Valves
ML24065A2532024-03-0505 March 2024
RAI Issuance Surry RR IST P-1 P-2
ML23187A1122023-07-0606 July 2023
TSC Relocation LAR RAIs
ML23171B0522023-06-20020 June 2023
NRR E-mail Capture - RAI for Review of Appendix F to DOM-NAF-2-P (Redacted)
ML23068A0242023-03-0808 March 2023
RAI Issuance Fuel Handling Trolley LAR
ML23054A2412023-02-23023 February 2023
NRR E-mail Capture - Formal Issuance of RAIs for Surry Turbine Building Tornado Reclassification
ML23046A1172023-02-0202 February 2023
002 Radiation Safety Baseline Inspection Information Request
ML23018A1642023-01-17017 January 2023
Formal Issuance of RAIs for Surry ISI Alternative for SG Welds, 30 Day Calendar Response Period (Email)
ML22349A2102022-12-15015 December 2022
Formal 43-day Request for Additional Information Issuance for Surry Turbine Building License Amendment Request
ML22339A1582022-11-30030 November 2022
Requalification Inspection Notification Letter
ML22258A2202022-09-13013 September 2022
FFD RFI
ML22251A1292022-09-0909 September 2022
Request for Additional Information Related to Response to Generic Letter 2004-04
ML22242A0452022-08-23023 August 2022
NRR E-mail Capture - Dominion GL 04-02 Response Draft RAIs (L-2017-LRC-0000)
ML22223A1192022-08-14014 August 2022
RP Inspection Document Request Letter Final
ML22110A2052022-04-19019 April 2022
Formal Issuance of RAIs for Post LOCA Buffer Change LAR
ML22067A1622022-03-0909 March 2022
Notification of Inspection and Request for Information for NRC Problem Identification and Resolution Inspection
ML22012A0572022-01-11011 January 2022
Issuance of RAIs for Surry Unit 1, Spring 2021 Steam Generator Tube Inspection
ML21225A5022021-08-13013 August 2021
Request for Additional Information for North Anna Power Station, Units 1 and 2, Surry Power Station, Units 1 and 2, and Millstone Power Station, Units 2 and 3, Appendix E of Fleet Report Com-Naf-2 (EPID:L02021-LLT-0000) Public Version
ML21196A1012021-07-15015 July 2021
Notification of an NRC Fire Protection Team Inspection (FPTI) (NRC Inspection Report 05000280/2021011 and 05000281/2021011) and Request for Information (RFI)
ML21195A2442021-07-13013 July 2021
NRR E-mail Capture - Draft RAI Appendix E to Topical Report DOM-NAF-2 Qualification of the Framatome BWU-I CHF Correlation in the Dominion Energy VIPRE-D Computer Code
ML21102A3122021-04-12012 April 2021
NRR E-mail Capture - Surry, Units 1 & 2 - Final RAI for the LOCA AST LAR
ML21076A4622021-03-17017 March 2021
NRR E-mail Capture - Draft RAI for Versatile Internals and Component Program for Reactors Vipre Code Review (L-2021-LLT-0000)
ML21061A0292021-03-0101 March 2021
2021 Sur - POV Inspection Information Request
ML21049A2662021-02-16016 February 2021
NRR E-mail Capture - Surry, Units 1 and 2 - Final RAI Concerning the Leak-Before-Break (LBB) LAR
ML21049A2672021-02-11011 February 2021
NRR E-mail Capture - Surry, Units 1 & 2 - Draft RAI for the LBB LAR
ML21020A1322021-01-19019 January 2021
NRR E-mail Capture - RAIs for Surry'S Request for Proposed Alternative S1-I5-ISl-05 and S2-I5-ISl-06 (ML20296A680)
ML21020A1332021-01-13013 January 2021
NRR E-mail Capture - Draft RAIs for Surry'S Request for Proposed Alternative S1-I5-ISl-05 and S2-I5-ISl-06 (ML20296A680)
ML20315A3972020-11-10010 November 2020
Notification of NRC Supplemental Inspection (95001) and Request for Information - RA
ML20156A0652020-06-0404 June 2020
NRR E-mail Capture - Final RAIs for Surry U1 Fall 2019 Sgtir Application
ML20136A0102020-05-14014 May 2020
NRR E-mail Capture - Final RAIs Regarding Surry Units 1 & 2 LAR to Adopt 10 CFR 50.69
ML20134J1382020-05-0606 May 2020
Notification of Inspection and Request for Information for NRC Problem Identification and Resolution Inspection
ML20106E9552020-04-15015 April 2020
Program Inspection RFI
ML20029D8382020-02-0505 February 2020
Email from T. Tran, Nmss/Drefs/Elrb; Re., Request for Additional Information - Surry SLRA Environmental Review
ML20013C7282020-01-0909 January 2020
NRR E-mail Capture - Final RAI Regarding Surry'S TS One-Time 14-Day AOT RSST Cable Replacement LAR
ML20007F7952020-01-0606 January 2020
NRR E-mail Capture - Surry RAI Regarding Its Rx Coolant P-T Limits LAR
ML19323E2212019-11-13013 November 2019
NRR E-mail Capture - RAI on the SPS Rtb CT Extension LAR
ML19317F1042019-11-0707 November 2019
NRR E-mail Capture - Draft RAIs for SB LOCA LAR (Non Prop)
ML19296D8982019-10-23023 October 2019
NRR E-mail Capture - RAI for Surry ISTF-411 LAR to Extend Rx Trip Breakers TS CT to 24 Hours
ML19283B6252019-10-0202 October 2019
Questions Related to Interval Visual Inspections in Lieu of External Visual Inspections
ML19283B6232019-09-20020 September 2019
NRC Surry Draft RAI-Open Cycle Cooling Water (NRC TRP-20 James Gavula)
ML19283B6282019-09-19019 September 2019
SLRA - Draft 3rd Round RAI - Selective Leaching (Trp 33)
ML19283B6272019-09-18018 September 2019
SLRA - Clarification Call for 3rd Round RAI - Trp 14 (Buried Piping)
ML19253C7532019-08-20020 August 2019
SLRA Transmittal Email Attachment 4D Confirmation Letter - August 20, 2019
ML19231A1532019-08-14014 August 2019
Final Requests for Additional Information for the Safety Review of the Surry Power Station, Units 1 and 2 Subsequent License Renewal Application Set 4 August 14, 2019. L-2018-RNW-0023/000951
ML19217A3582019-08-0202 August 2019
SLRA RAI Transmittal Email Set 3 with Attachments- 2-August 5, 2019
ML19192A2472019-07-10010 July 2019
Final Disposition List of Request for Additional Information for the Safety Review of the Surry Power Station, Units 1 and 2 Subsequent License Renewal Application (L-2018-RNW-0023/000951)
ML19184A1392019-07-0101 July 2019
SLRA Email Transmittal of Draft RAIs with Attachments - 29JUN2019
ML19169A0962019-06-17017 June 2019
NRR E-mail Capture - Request for Additional Information Emergency Action Level Scheme Change for Millstone Power Station - Units 1, 2, and 3, North Anna Power Station - Units 1 and 2, and Surry Power Station - Units 1 and 2
ML19176A5262019-06-11011 June 2019
SLRA Email Transmittal of Draft RAIs with Attachments June 11, 2019
2024-05-22
[Table view] |
See also: IR 05000280/2024403
Text
David H. Wilson
Site Vice President
Surry Power Station
Virginia Electric and Power Company
5570 Hog Island Road
Surry, VA 23883-0315
SUBJECT: SURRY POWER STATION UNITS 1 & 2 - INFORMATION REQUEST FOR THE
CYBER-SECURITY BASELINE INSPECTION, NOTIFICATION TO PERFORM
INSPECTION 05000280/2024403 AND 05000281/2024403
Dear David H. Wilson:
On September 9, 2024, the U.S. Nuclear Regulatory Commission (NRC) will begin a baseline
inspection in accordance with Inspection Procedure (IP) 71130.10 Cyber-Security, Revision 0,
at your Surry Power Station Units 1 & 2. The inspection will be performed to evaluate and verify
your ability to provide assurance that your digital computer and communication systems and
networks associated with safety, security, or emergency preparedness (SSEP) functions are
adequately protected against cyber-attacks in accordance with Title 10 of the Code of Federal
Regulations (10 CFR) 73.54 and the U.S. Nuclear Regulatory Commission (NRC) approved
cyber security plan (CSP). The onsite portion of the inspection will take place during the week of
September 9, 2024.
Experience has shown that baseline inspections are extremely resource intensive, both for the
NRC inspectors and the licensee staff. To minimize the inspection impact on the site and to
ensure a productive inspection for both parties, we have enclosed a request for documents
needed for the inspection. These documents have been divided into four groups.
The first group specifies information necessary to assist the inspection team in choosing the
focus areas (i.e., sample set) to be inspected by the cyber-security IP. This information should
be made available electronically no later than July 12, 2024. The inspection team will review
this information and, by July 19, 2024, will request the specific items that should be provided for
review. This second group of additional requested documents will assist the inspection team in
the evaluation of the critical systems and critical digital assets (CSs/CDAs), defensive
architecture, and the areas of the licensees CSP selected for the cyber-security inspection. We
request that the information provided from the second RFI be made available to the regional
office prior to the inspection by August 30, 2024.
The third group of requested documents consists of those items that the inspection team will
review, or need access to, during the inspection. Please have this information available by the
first day of the onsite inspection, September 9, 2024.May 22, 2024
D. Wilson 2
The fourth group of information is necessary to aid the inspection team in tracking issues
identified as a result of the inspection. It is requested that this information be provided to the
lead inspector as the information is generated during the inspection. It is important that all these
documents are up to date and complete in order to minimize the number of additional
documents requested during the preparation and/or the onsite portions of the inspection.
The lead inspector for this inspection is William Monk. We understand that our regulatory
contacts for this inspection are Mr. Mike True and Mrs. Melissa Pelletier of your organization. If
there are any questions about the inspection or the material requested, please contact the lead
inspector at (404) 997-4579 or via e-mail at william.monk@nrc.gov.
This letter does not contain new or amended information collection requirements subject to the
Paperwork Reduction Act of 1995 (44 U.S.C. 3501 et seq.). Existing information collection
requirements were approved by the Office of Management and Budget, control number 3150 -
0011. The NRC may not conduct or sponsor, and a person is not required to respond to, a
request for information or an information collection requirement unless the requesting document
displays a currently valid Office of Management and Budget control number.
In accordance with 10 CFR 2.390, Public Inspections, Exemptions, Requests for Withholding,
of the NRC's "Rules of Practice," a copy of this letter and its enclosure will be available
electronically for public inspection in the NRCs Public Document Room or from the Publicly
Available Records (PARS) component of the NRC's Agencywide Documents Access and
Management System (ADAMS). ADAMS is accessible from the NRC Web site at
http://www.nrc.gov/reading-rm/adams.html (the Public Electronic Reading Room).
Sincerely,
Daniel Bacon, Branch Chief
Engineering Branch 2
Division of Reactor Safety
Docket Nos. 05000280 and 05000281
License Nos. DPR-32; DPR-37
Enclosure:
Surry Power Station Units 1 and 2 Cyber-
Security Inspection Document Request
cc w/encl: Distribution via LISTSERV
Signed by Bacon, Daniel
on 05/22/24
ML24141A286
X Non-Sensitive X Publicly Available
X SUNSI Review
Sensitive Non-Publicly Available
OFFICE RII/DRS RII/DRS RII/DRS
NAME W. Monk J. Montgomery D. Bacon
DATE 5/20/2024 5/21/2024 5/22/2024
SURRY POWER STATION UNITS 1 & 2
CYBER-SECURITY INSPECTION DOCUMENT REQUEST
Inspection Report: 05000280/2024-403 and 05000281/2024-403
Inspection Dates: September 9 - 13, 2024
Inspection Procedure: IP 71130.10, Cyber-Security, Revision 0 (Effective: 01/01/2022)
Reference: ML21330A088 Guidance Document for Development of the
Request for Information (RFI) and Notification Letter for
Full-Implementation of the Cyber-Security Inspection, Rev. 2
(Issued: 11/22/2021)
NRC Inspectors:William Monk, Lead Jonathan Montgomery
(404) 909-4579 (404) 997-4880
william.monk@nrc.gov jonathan.montgomery@nrc.gov
NRC Contractors: Justin Bowden Charles Simpson
Justin.Bowden@nrc.gov Charles.Simpson@nrc.gov
I. Information Requested for In-Office Preparation
The initial request for information (i.e., RFI #1) concentrates on providing the inspection
team with the general information necessary to select appropriate components and CSP
elements to develop a site-specific inspection plan. RFI #1 is used to identify the list of
critical systems and critical digital assets (CSs/CDAs) plus operational and management
(O&M) security control portions of the CSP to be chosen as the sample set required to
be inspected by the cyber-security IP. RFI #1s requested information is specified below
in Table: RFI #1 and requested to be provided electronically to the inspection team by
July 12, 2024, or sooner, to facilitate the selection of the specific items that will be
reviewed during the onsite inspection week.
The inspection team will examine the returned documentation from RFI #1 and
identify/select specific systems and equipment (e.g., CSs/CDAs) to provide a more
focused follow-up request to develop the second RFI. The inspection team will submit
the specific systems and equipment list to your staff by July 19, 2024, which will identify
the specific systems and equipment that will be utilized to evaluate the CSs/CDAs,
defensive architecture, and the areas of the licensees CSP selected for the cyber-
security inspection. We request that the additional information provided from RFI #2 be
made available to the inspection team by August 30, 2024. All requests for information
shall follow the guidance document U.S. NRC - Guidance Document for Development of
the Request for Information (RFI) and Notification Letter for Full Implementation of the
Cyber-Security Inspection, referenced above.
Enclosure
The required Table: RFI #1 information shall be provided electronically to the lead
inspector by July 12, 2024. The preferred file format for all lists is a searchable Excel
spreadsheet file. The information should be indexed and hyper-linked to facilitate ease of
use. If you have any questions regarding this information, please call the inspection
team leader as soon as possible.
Table: RFI #1
Paragraph Number/Title: IP Ref
A list of all identified Critical Systems and Critical Digital Assets -
1 highlight/note any additions, deletions, reclassifications due to new Overall
guidance from white papers, changes to NEI 10-04, 13-10, etc. since
the last cyber security inspection.
2 A list of EP and Security onsite and offsite digital communication Overall
systems.
3 Network Topology Diagrams to include information and data flow for Overall
critical systems in Levels 2, 3, and 4 (if available).
4 Ongoing Monitoring and Assessment (OM&A) program documentation. 03.01(a)
5 The most recent effectiveness analysis and self-assessments of the 03.01(b)
Cyber Security Program.
6 Password/Authenticator program documentation. 03.02(c)
Design change / modification program documentation and a list of all
7 design changes completed since the last cyber security inspection, 03.03(a)
including either a summary of the design change or the 50.59
documentation for the change.
8 Supply Chain Management program documentation, including any 03.03(a),
security impact analysis for new acquisitions. (b) and (c)
9 Cyber Security Plan and any 50.54(p) analysis to support changes to 03.04(a)
the plan since the last cyber inspection.
10 Cyber Security Performance Metrics tracked (if applicable). 03.06(b)
11 Provide a list of all cybersecurity procedures and policies with their Overall
descriptive name and associated number.
12 Performance testing report (if applicable). 03.06(a)
Corrective actions taken as a result of cyber security incidents/issues to
13 include previous NRC violations and Licensee Identified Violations
since the last cyber security inspection. 03.05
2
In addition to the above information, please provide the following:
(1) electronic copy of the UFSAR and sites technical specifications.
(2) name(s) and phone numbers for the regulatory and technical contacts.
Based on this information, the inspection team will identify and select specific systems
and equipment (e.g., CSs/CDAs) from the information requested by Table RFI #1 and
submit a list of specific systems and equipment to your staff by July 19, 2024, for the
second RFI (i.e., RFI #2).
II. Additional Information Requested to be Available Prior to Inspection.
As stated in Section I above, the inspection team will examine the returned
documentation requested from Table: RFI #1 and submit the list of specific systems and
equipment to your staff by July 19, 2024, for the second RFI (i.e., RFI #2). RFI #2 will
request additional information required to evaluate the CSs/CDAs, defensive
architecture, and the areas of the licensees CSP selected for the cyber-security
inspection. The additional information requested for the specific systems and equipment
is identified in Table: RFI #2 and requested information shall follow the guidance
document referenced above.
The Table: RFI #2 information shall be provided to the lead inspector by August
30, 2024. The preferred file format for all lists is a searchable Excel spreadsheet. The
information should be indexed and hyper-linked to facilitate ease of use. If you have any
questions regarding this information, please call the inspection team leader as soon as
possible.
Table: RFI #2
Paragraph Number/Title: Items
For the Critical Systems / CDAs chosen for inspection provide:
1 Ongoing Monitoring and Assessment (OM&A) activity performed on 03.01(a)
the selected inspection samples critical systems.
2 All Security Control Assessments for the selected critical systems. 03.01(a)
All vulnerability screenings/assessments associated with, or scans
3 performed on the selected critical systems since the last cyber 03.01(c)
security inspection.
Documentation (including configuration files and rules sets) for
Network-based Intrusion Detection/Protection Systems (NIDS/NIPS),
4 Host-based Intrusion Detection Systems (HIDS), and Security 03.02(b)
Information and Event Management (SIEM) systems for the critical
systems chosen for inspection (i.e., the devices that are credited for
protection for the selected critical systems).
3
Table: RFI #2
Paragraph Number/Title: Items
Documentation (including configuration files and rule sets) for intra-
5 security level firewalls and boundary devices used to protect the 03.02(c)
selected critical systems.
6 Copies of all periodic reviews of the access authorization (AA) list for 03.02(d)
the selected critical systems since the last cyber inspection.
7 Baseline configuration data sheets for the selected CDAs and for the 03.03(a)
selected design changes.
8 Documentation on any changes, including Security Impact Analyses, 03.03(b)
performed on the selected critical systems since the last inspection.
9 Copies of the purchase order documentation for any new equipment 03.03(c)
purchased for the selected systems since the last inspection.
Copies of any reports/assessments for cyber security drills 03.02(a)
10 performed since the last inspection.
03.04(b)
Copy of the individual recovery plan(s) for the selected critical 03.02(a)
11 systems including documentation of the results the last time the
backups were executed. 03.04(b)
12 Vulnerability Management program screening and assessment 03.01(c)
policies and procedures.
Cyber Security Incident Response documentation, including incident
detection, response, and recovery documentation as well as 03.02(a)
13 contingency plan development, implementation, and including any and
program documentation that requires testing of security boundary 03.04(b)
device functionality.
14 Device Access and Key Control program documentation. 03.02(c)
15 User Account/Credential documentation. 03.02(d)
16 Portable Media and Mobile Device (PMMD) control documentation, 03.02(e)
including kiosk security control assessment/documentation.
Configuration Management documentation including any security 03.03(a)
17 impact analysis (SIA) performed due to configuration changes since and (b)
the last cyber inspection.
Provide documentation describing any cyber security changes to the
18 access authorization program (AAP) since the last cyber security Overall
inspection.
4
Table: RFI #2
Paragraph Number/Title: Items
19 The most recent Cybersecurity Quality Assurance audit and/or self- Overall
assessment and a list of Corrective Actions generated as a result.
III. Information Requested to be Available on First Day of Inspection
For the specific systems and equipment identified in Section II above, provide the
following RFI (i.e., Table: Week Onsite) to the team by September 9, 2024, the first day
of the inspection. All requested information shall follow the guidance document
referenced above.
The preferred file format for all lists is a searchable Excel spreadsheet file. The
information should be indexed and hyper-linked to facilitate ease of use. If you have any
questions regarding this information, please call the inspection team leader as soon as
possible.
Table: Week Onsite
Paragraph Number/Title: Items
1 Any cyber security event reports submitted in accordance with 10 03.04(a)
CFR 73.77, since the last cyber security inspection.
Updated copies of corrective actions taken as a result of cyber
2 security incidents/issues, to include previous NRC violations and 03.05
Licensee Identified Violations since the last cyber security
inspection, as well as vulnerability-related corrective actions.
In addition to the above information please provide the following:
(1) Copies of the following documents do not need to be solely available to the
inspection team as long as the inspectors have easy access to them.
a. Updated Final Safety Analysis Report (UFSAR), if not previously provided
b. Original SER and Supplements
c. FSAR Question and Answers
d. Quality Assurance (QA) Plan
e. Technical Specifications, if not previously provided
f. Latest IPE/PRA Report
5
(2) Vendor Manuals, Assessments and Corrective Actions:
a. The most recent Cyber-Security Quality Assurance (QA) audit and/or
self-assessment.
b. Corrective action documents (e.g., condition reports, including status of
corrective actions) generated as a result of the most recent Cyber-Security
Quality Assurance (QA) audit and/or self-assessment.
IV. Information Requested to Be Provided Throughout the Inspection
(1) Copies of any corrective action documents generated as a result of the
inspection teams questions or queries during the inspection.
(2) Copies of the list of questions submitted by the inspection team members and
the status/resolution of the information requested (provided daily during the
inspection to each inspection team member during daily de-brief meetings).
If you have any questions regarding the information requested, please contact the inspection
team leader.
6
