ML25127A413
| ML25127A413 | |
| Person / Time | |
|---|---|
| Site: | Watts Bar  |
| Issue date: | 05/09/2025 |
| From: | Daniel Bacon NRC/RGN-II/DORS/EB2 |
| To: | Erb D Tennessee Valley Authority |
| References | |
| IR 2025402 | |
| Download: ML25127A413 (1) | |
Text
Delson C. Erb Vice President, OPS Support Tennessee Valley Authority 1101 Market Street, LP 4A-C Chattanooga, TN 37402-2801
SUBJECT:
WATTS BAR NUCLEAR PLANT - CYBER SECURITY INSPECTION REPORT 05000390/2025402 AND 05000391/2025402
Dear Delson C. Erb:
On April 3, 2025, the U.S. Nuclear Regulatory Commission (NRC) completed an inspection at Watts Bar Nuclear Plant and discussed the results of this inspection with Andrew Waldmann and other members of your staff. The results of this inspection are documented in the enclosed report.
No findings or violations of more than minor significance were identified during this inspection.
This letter, its enclosure, and your response (if any) will be made available for public inspection and copying at http://www.nrc.gov/reading-rm/adams.html and at the NRC Public Document Room in accordance with Title 10 of the Code of Federal Regulations 2.390, Public Inspections, Exemptions, Requests for Withholding.
Sincerely, Daniel M. Bacon, Chief Engineering Branch 2 Division of Operating Reactor Safety Docket Nos. 05000390 and 05000391 License Nos. NPF-90 and NPF-96
Enclosure:
As stated cc w/ encl: Distribution via LISTSERV May 9, 2025 McKown, Louis signing on behalf of Bacon, Daniel on 05/09/25
SUNSI Review X
Non-Sensitive
Sensitive X
Publicly Available
Non-Publicly Available OFFIC E
RII/DORS RII/DORS RII/DORS RII/DORS RII/DORS NAME P. Braaten D. Rivard C. Simpson M. Shock D. Bacon DATE 5/8/2025 5/8/2025 5/7/2025 5/8/2025 5/9/2025
Enclosure U.S. NUCLEAR REGULATORY COMMISSION Inspection Report Docket Numbers:
05000390 and 05000391 License Numbers:
NPF-90 and NPF-96 Report Numbers:
05000390/2025402 and 05000391/2025402 Enterprise Identifier:
I-2025-402-0035 Licensee:
Tennessee Valley Authority Facility:
Watts Bar Nuclear Plant Location:
Spring City, TN Inspection Dates:
March 31, 2025 to April 03, 2025 Inspectors:
P. Braaten, Senior Reactor Inspector D. Rivard, Senior Resident Inspector M. Shock, Cyber Security Specialist C. Simpson, Cyber Security Specialist Approved By:
Daniel M. Bacon, Chief Engineering Branch 2 Division of Operating Reactor Safety
2
SUMMARY
The U.S. Nuclear Regulatory Commission (NRC) continued monitoring the licensees performance by conducting a cyber security inspection at Watts Bar Nuclear Plant, in accordance with the Reactor Oversight Process. The Reactor Oversight Process is the NRCs program for overseeing the safe operation of commercial nuclear power reactors. Refer to https://www.nrc.gov/reactors/operating/oversight.html for more information.
List of Findings and Violations No findings or violations of more than minor significance were identified.
Additional Tracking Items None.
3 INSPECTION SCOPES Inspections were conducted using the appropriate portions of the inspection procedures (IPs) in effect at the beginning of the inspection unless otherwise noted. Currently approved IPs with their attached revision histories are located on the public website at http://www.nrc.gov/reading-rm/doc-collections/insp-manual/inspection-procedure/index.html. Samples were declared complete when the IP requirements most appropriate to the inspection activity were met consistent with Inspection Manual Chapter (IMC) 2201, Security Inspection Program for Commercial Nuclear Power Reactors. The inspectors reviewed selected procedures and records, observed activities, and interviewed personnel to assess licensee performance and compliance with Commission rules and regulations, license conditions, site procedures, and standards.
SAFEGUARDS 71130.10 - Cybersecurity The inspectors reviewed implementation of Watts Bar's Cyber Security Plan (CSP) and focused on evaluating changes to the program, critical systems, and CDAs.
Cybersecurity (1 Sample)
(1)
The following IP sections were completed and constitute completion of 1 sample:
03.01, Review Ongoing Monitoring and Assessment Activities 03.02, Verify Defense-in-Depth Protective Strategies 03.03, Review of Configuration Management Change Control 03.05, Evaluation of Corrective Actions INSPECTION RESULTS No findings were identified.
EXIT MEETINGS AND DEBRIEFS The inspectors verified no proprietary information was retained or documented in this report.
On April 3, 2025, the inspectors presented the cyber security inspection results to Andrew Waldmann and other members of the licensee staff.
4 DOCUMENTS REVIEWED Inspection Procedure Type Designation Description or Title Revision or Date WBNP U1-261-0.8(sar)
WBN U1-Process Computer System (261) Security Assessment Report Rev. 0 Calculations WBNP U2-261-0.4(sar)
WBN U2-Process Computer System (261) Security Assessment Report Rev. 0 CR 1899306 WBN - Lost cyber security key 12/20/2023 CR 1899513 Late CR generation related to CR 1899306 12/28/2023 Corrective Action Documents CR 1908346 During the performance of WO# 123768690 (1-ODI-15-1) calibration of 1-FIT-15-42 techs found tamper 02/13/2024 CR 2003587 WBN 2025 Cyber Security Inspection - Authorized Test USB Drive 04/02/2025 Corrective Action Documents Resulting from Inspection CR 2003846 2025 WBN NRC Cyber Security Inspection Baseline Configuration Detail 04/03/2025 WB-24-066 WBN Security ACP Enhancements Rev. 0 WBN-19-759 Replace Unit 1 ICCM Rev. 03 WBN-22-022 Replace ICS Data Diode Rev. 01 Engineering Changes WBN-22-048 WBN IDS Firewall Installation Rev. 0 L57 200603 801 NPG Portable Media/Device Evaluation for WBN Security Aegis Flash Drive 12/14/2017 Miscellaneous SSR 25-0208 WBN-24-066 - Harden WBN-0-XRAY-257-2012 and WBN XRAY-257-2056 03/12/2025 NPG-SPP-09.3 Plant Modifications and Engineering Change Control Rev. 39 NPG-SPP-09.5 Temporary Modifications [sic] Temporary Configuration Changes Rev, 21 NPG-SPP-12.7 Computer Software Control Rev. 16 NPG-SPP-12.8.10 Cyber Security Media Protection Rev. 03 NPG-SPP-12.8.15 Cyber Security System and Services Acquisition Rev. 04 NPg-SPP-12.8.5 Cyber Security Configuration Management Rev. 08 NPG-SPP-12.8.5 Cyber Security Configuration Management Rev. 08 NPG-SPP-12.9.1 Cyber Security Access Control Rev. 14 71130.10 Procedures NPG-SPP-14.5 Access Authorization Rev. 25
5 Inspection Procedure Type Designation Description or Title Revision or Date WO 123305216 Perform wireless scans of accessible areas at WBN 10/30/2023 WO 123896157 Perform wireless scans of accessible areas at WBN 05/16/2024 WO 123976230 Perform wireless scans of accessible areas at WBN 08/07/2024 WO 124099968 Perform wireless scans of accessible areas at WBN 10/01/2024 Work Orders WO 124101940 Perform wireless scans of accessible areas at WBN.
11/26/2024