|
|
| (One intermediate revision by the same user not shown) |
| Line 1: |
Line 1: |
| {{Adams | | {{Adams |
| | number = ML18136A614 | | | number = ML18341A107 |
| | issue date = 05/15/2018 | | | issue date = 12/06/2018 |
| | title = State, Units 1 and 2 - Information Request for the Cyber-Security Inspection Notification to Perform Inspection 050000387-2018403 and 05000388-2018403 | | | title = Cyber Security Inspection Report 05000387/2018403 and 05000388/2018403 (Cover Letter Only) |
| | author name = Dentel G | | | author name = Dentel G |
| | author affiliation = NRC/RGN-I | | | author affiliation = NRC/RGN-I/DRS/EB2 |
| | addressee name = Rausch T | | | addressee name = Berryman B |
| | addressee affiliation = Susquehanna Nuclear, LLC | | | addressee affiliation = Susquehanna Nuclear, LLC |
| | docket = 05000387, 05000388 | | | docket = 05000387, 05000388 |
| | license number = NPF-014, NPF-922 | | | license number = NPF-014, NPF-022 |
| | contact person = Patel J | | | contact person = Dentel G |
| | document report number = IR 2018403 | | | document report number = IR 2018403 |
| | document type = Letter | | | document type = Inspection Report, Letter |
| | page count = 8 | | | page count = 3 |
| }} | | }} |
|
| |
|
| Line 18: |
Line 18: |
|
| |
|
| =Text= | | =Text= |
| {{#Wiki_filter:May 15, 2018 | | {{#Wiki_filter:UNITED STATES NUCLEAR REGULATORY COMMISSION ber 6, 2018 |
|
| |
|
| ==SUBJECT:== | | ==SUBJECT:== |
| SUSQUEHANNA STEAM ELECTRIC STATION, UNIT S 1 AND 2 INFORMATION REQUEST FOR THE CYBER-SECURITY INSPECTION NOTIFICATION TO PERFORM INSPECTION 05000 387/2018 40 3 AND 05000 388/2018 40 3 | | SUSQUEHANNA STEAM ELECTRIC STATION - CYBER SECURITY INSPECTION REPORT 05000387/2018403 AND 05000388/2018403 |
|
| |
|
| ==Dear Mr. Rausch:== | | ==Dear Mr. Berryman:== |
| On October 15, 2018, the U.S. Nuclear Regulatory Commission (NRC) will begin a team inspection in accordance with Inspection Procedure (IP) 71130.10 P "Cyber-Security ," issued May 15, 2017 at your Susquehanna Steam Electric Station, Units 1 and 2 (Susquehanna). | | On November 1, 2018, the U.S. Nuclear Regulatory Commission (NRC) completed an inspection at Susquehanna Steam Electric Station (Susquehanna), Units 1 and 2. On this date, the NRC inspectors discussed the results of this inspection with Mr. Kevin Cimorelli, Site Vice President, and other members of your staff. The results of this inspection are documented in the enclosed report. |
|
| |
|
| Th e inspection will be performed to evaluate and verify your ability to meet full implementation requirements of the NRC's Cyber-Security Rule, Title 10, Code of Federal Regulations (CFR), Part 73, Section 54, "Protection of Digital Computer and Communication Systems and Networks."
| | NRC inspectors documented five findings of very low safety significance (Green) in this report. |
|
| |
|
| The onsite portion of the inspection will take place during the weeks of October 15-19, 2018, and October 29 - November 2, 2018. Experience has shown that team inspections are extremely resource intensive, both for the NRC inspectors and the licensee staff. In order to minimize the inspection impact on the site and to ensure a productive inspection for both parties, we have enclosed a request for documents needed for the inspection. These documents have been divided into four groups. The first group specifies information necessary to assist the inspection team in choosing the focus areas (i.e., "sample set") to be inspected by the cyber security Inspection Procedure. This information should be made available via compact disc and delivered to the regional office no later than July 23, 2018. The inspection team will review this information and, by Augus t 20, 2018, will request the specific items that should be provided for review
| | These findings involved a violation of the NRC requirements. Additionally, NRC inspectors documented a licensee-identified violation which was determined to be of very low safety significance in this report. The NRC is treating these violations as non-cited violations (NCVs) |
| . The second group of additional requested documents will assist the inspection team in the evaluation of the critical systems and critical digital assets (CSs/CDAs), defensive architecture, and the areas of your plant's Cyber Security Program selected for the cyber security inspection. This information will be requested for review in the regional office prior to the inspection by September 17, 2018. | | consistent with Section 2.3.2.a of the Enforcement Policy. |
|
| |
|
| The third group of requested documents consists of those items that the inspection team will review, or need access to, during the inspection. Please have this information available by the first day of the onsite inspection, October 15, 2018. The four th group of information is necessary to aid the inspection team in tracking issues identified as a result of the inspection. It is requested that this information be provided to the lead inspector as the information is generated during the inspection. It is important that all of these documents are up to date and complete in order to minimize the number of additional documents requested during the preparation and/or the onsite portions of the inspection.
| | Five cross-cutting aspects were assigned to findings in the areas of Human Performance and Problem Identification and Resolution. Specifically, because Susquehanna failed to use a systematic process for evaluating and implementing changes so that nuclear safety remains the overriding priority [H.3]; failed to create and maintain complete, accurate, and up-to-date documentations [H.7]; failed to identify issues completely, accurately, and in a timely manner in accordance with the corrective action program [P.1]; and failed to systematically and effectively collect, evaluate, and implement relevant internal and external operating experience in a timely manner [P.5]. |
| | Enclosure transmitted herewith contains Sensitive, Unclassified, Non-Safeguards Information. When separated from the Enclosure, the transmittal document is decontrolled. If you contest the violations or significance of these NCVs, you should provide a response within 30 days of the date of this inspection report, with the basis for your denial, to the U.S. Nuclear Regulatory Commission, ATTN: Document Control Desk, Washington, DC 20555-0001; with copies to the Regional Administrator, Region I; the Director, Office of Enforcement; and the NRC Resident Inspector at Susquehanna. In addition, if you disagree with cross-cutting aspects assignment, you should provide a response within 30 days of the date of this inspection report, with the basis for your disagreement, to the U. S. Nuclear Regulatory Commission, ATTN: |
| | Document Control Desk, Washington, DC, 20555-0001; with copies to the Regional Administrator, Region I and the NRC Resident Inspector at Susquehanna. |
|
| |
|
| The lead inspector for this inspection is Jigar Patel. We understand that our regulatory contact for this inspection is Mr. Charlie Manges of your organization. If there are any questions about the inspection or the material requested, please contact the lead inspector at 610-337-5188 or via e-mail at Jigar.Patel1@nrc.gov. This letter does not contain new or amended information collection requirements subject to the Paperwork Reduction Act of 1995 (44 U.S.C. 3501 et seq.). Existing information collection requirements were approved by the Office of Management and Budget, control number 3150-0011. The NRC may not conduct or sponsor, and a person is not required to respond to, a request for information or an information collection requirement unless the requesting document displays a currently valid Office of Management and Budget control number.
| | This letter will be made available for public inspection and copying at http://www.nrc.gov/reading-rm/adams.html and the NRC Public Document Room in accordance with Title 10 of the Code of Federal Regulations (10 CFR), Part 2.390, Public Inspections, Exemptions, Requests for Withholding. |
|
| |
|
| This letter and its enclosure will be available for public inspection and copying at http://www.nrc.gov/readi ng-rm/adams.html and at the NRC
| | However, the enclosed report contains Security-Related Information, so the enclosed report will not be made publically available in accordance with 10 CFR 2.390(d)(1). If you choose to provide a response that contains Security-Related Information, please mark your entire response Security-Related Information-Withhold from Public Disclosure under 10 CFR 2.390 in accordance with 10 CFR 2.390(d)(1) and follow the instructions for withholding in 10 CFR 2.390(b)(1). The NRC is waiving the affidavit requirements for your response in accordance with 10 CFR 2.390(b)(1)(ii). |
| 's Public Document Room in accordance with 10 CFR 2.390, "Public Inspections, Exe mptions, Requests for Withholding."
| |
|
| |
|
| Sincerely, | | Sincerely, |
| /RA/ Glenn T. Dentel , Chief Engineering Branch 2 Division of Reactor Safety Docket No s. 50-387 and 50-388 License No s. NPF-14 and NPF-22 Enclosure: | | /RA/ |
| Susquehanna Steam Electric Station Cyber Security Inspection Document Request cc w/encl:
| | Glenn T. Dentel, Chief Engineering Branch 2 Division of Reactor Safety Docket Numbers: 50-387 and 50-388 License Numbers: NPF-14 and NPF-22 Enclosure: |
| Distribution via ListServ
| | Non-Public Inspection Report 05000387/2018403 and 05000388/2018403 (OUO-SRI) |
| | | cc w/o encl; w/o OUO-SRI: |
| ML18136A614 SUNSI Review Non-Sensitive Sensitive Publicly Available Non-Publicly Available OFFICE RI/DRS RI/DRS NAME JPatel GDentel DATE 05/14/18 05/15/18 1 SUSQUEHANNA STEAM ELECTRIC STATION CYBER-SECURITY INSPECTION DOCUMENT REQUEST Enclosure Inspection Report:
| | Distribution via ListServ cc w/encl; w/OUO-SRI: |
| 05000 387/2018403 and 05000 388/2018403 Inspection Dates:
| | KLore, Manager, Nuclear Security DAllard, Director, PA DEP ML18341A107 (Cover letter) |
| October 15
| | ADAMS ACCESSION NUMBER: ML18341A114 (Cover letter w/enclosure-OUO-SRI) |
| - 19, 2018 and October 29 | | Cover Letter Non-Sensitive Publicly Available SUNSI Review Sensitive Non-Publicly Available Cover Letter w/ Enclosure Non-Sensitive Publicly Available SUNSI Review Sensitive Non-Publicly Available OFFICE RI/DRS RI/DRS RI/DRP RI/DRS NAME JPatel DWerkheiser via email JGreives GDentel DATE 11/20/18 12/4/18 12/5/18 12/6/18 |
| - November 2, 2018 Inspection Procedure: | |
| IP 71130.10 P , "Cyber-Security ," Issue Date May 15, 2017 Reference:
| |
| Guidance Document for Development of the Request for Information (RFI) and Notification Letter for Full-Implementation of the Cyber Security Inspection , Issue Date October 26, 2017 NRC Inspector s: Jigar Patel, Lead Louis Dumont 610-337-5188 610-337-5183 Jigar.Patel1@nrc.gov Louis.Dumont@nrc.gov NRC Contractors:
| |
| Alan Konkal Timothy Wright Alan.Konkal@nrc.gov Timothy.Wright@nrc.gov NRC Observers:
| |
| Catherine Allen 301-287-3620 Catherine.Allen@nrc.gov I. Information Requested for In-Office Preparation The initial request for information (i.e., first RFI) concentrates on providing the inspection team with the general information necessary to select appropriate components and Cyber Security Program (CSP) elements to develop a site-specific inspection plan.
| |
| | |
| The first RFI is used to identify the list of critical systems and critical digital assets (CSs/CDAs) plus operational and management (O&M) security control portions of the CSP to be chosen as the "sample set" required to be inspected by the cyber security IP. The first RFI's requested information is specified below in Table RFI #1. The Table RFI #1 information is requested to be provided to the regional office by July 23, 2018, or sooner, to facilitate the selection of the specific items that will be reviewed during the onsite inspection weeks. All requests for information shall follow the Table RFI #1 and the guidance document referenced above.
| |
| | |
| The required Table RFI #1 information shall be provided on compact disc (CD) to the lead inspector by July 23, 2018. Please provide four copies of each CD submitted (i.e., one for each inspector/cont ractor). The preferred file format for all lists is a searchable Excel spreadsheet file on a CD. These CDs should be indexed and hyper-linked to facilitate ease of use. If you have any questions regarding this information, please call the inspection team leader as soon as possible.
| |
| | |
| 2 SUSQUEHANNA STEAM ELECTRIC STATION CYBER-SECURITY INSPECTION DOCUMENT REQUEST Table RFI #1 Reference Section 3, Paragraph Number/Title:
| |
| Items 1 List All Identified Critical Systems and Critical Digital Assets All 2 List CDA Facility and Site Ethernet
| |
| - Transmission Control Protocol/Internet Protocol (TCP/IP)
| |
| Based Local Area Networks (LANs)
| |
| and Identify Those LAN's That Have N on-CDAs O n Them All 3 List CDA Facility and Site N on-Ethernet TCP/IP Based LANs Including Those Industrial Networks and Identify LANs That Have N on-CDAs O n Them All 4 Network Topology Diagrams (Be Sure To Include all Network Intrusion Detection Systems (NIDS) and Security Information and Event Management (SIEMs) for Emergency Preparedness (EP) networks and Security Level 3 and 4 Networks)
| |
| All 8 List All Network Security Boundary Devices for EP Networks and All Network Security Boundary Devices for Levels 3 and 4 All 9 List CDA Wireless Industrial Networks All 11 NIDS Documentation for Critical Systems That Have CDAs Associated with Them 11.a.1) 11.a.2) 12 SIEM Documentation for Critical systems That Have CDAs Associated with Them 12.a.1) 12.a.2) 14 List EP and Security Onsite and Offsite Digital Communication Systems All 25 Cyber Security Assessment and Cyber Security Incident Response Teams All In addition to the above information please provide the following:
| |
| (1) Electronic copy of your current Cyber Security Plan (2) Electronic copy of summary of changes (if any), including any 10 CFR 50.54p analysis to support those changes, made to the originally approved Cyber Security Plan (3) Electronic copy of a matrix that summarizes what controls are in place to satisfy the controls required by Policies and Procedures (4) Electronic copy of the U pdated Final Safety Analysis Report and technical specifications (5) Name(s) and phone numbers for the regulatory and technical contacts (6) Current management and engineering organizational chart s The inspection team will examine the returned documentation from the first RFI and identify/select specific systems and equipment (e.g., CSs/CDAs) to provide a more focused follow-up request to develop the second RFI (i.e., Table RFI #2). The inspection team will submit the specific systems and equipment list to your staff by August 20, 2018, which will identify the specific systems and equipment that will be utilized to evaluate the CSs/CDAs, defensive architecture, and the areas of the licensee's CSP selected for the cyber security inspection. | |
| | |
| 3 SUSQUEHANNA STEAM ELECTRIC STATION CYBER-SECURITY INSPECTION DOCUMENT REQUEST II. Additional Information Requested to be Available Prior to Inspection As stated above, in Section I. of this enclosure , th e inspection team will examin e the returned documentation requested from Table RFI #1 and submit the list of specific systems and equipment to your staff by August 20, 2018 for the second RFI (i.e., RFI #2). The second RFI will request additional information required to evaluate the CSs
| |
| /CDAs, defensive architecture, and the areas of your station's CSP selected for the cyber-security inspection. The additional information requested for the specific systems and equipment is identified in Table RFI #2. All requested information shall follow the Table RFI #2 and the guidance document referenced above
| |
| . The Table RFI #2 information shall be provided on CD to the lead inspector by September 17, 2018. Please provide four copies of each CD submitted (i.e., one for each inspector/contractor). The preferred file format for all lists is a searchable Excel spreadsheet file on a CD. These CDs should be indexed and hyper-linked to facilitate ease of use. If you have any questions regarding this information, please call the inspection team leader as soon as possible.
| |
| | |
| Table RFI #2 Section 3, Paragraph Number/Title:
| |
| Items 5 Plant Computer System Block Diagram (If Plant Computer System Is Selected for Inspection)
| |
| All 6 Plant Security System Block Diagram (If Security Computer System Is Selected for Inspection)
| |
| All 7 Systems That Are Distributed Block Diagrams (For Systems Selected For Inspection)
| |
| All 10 Host-Based Intrusion Detection System Documentation (For CDAs for Systems Selected for Inspection)
| |
| 10.a.1) 10.a.2) 13 List all Maintenance and Test Equipment Used On CDAs for Systems Selected for Inspection All 15 Configuration Management All 16 Supply Chain Management 16.b. 16.c.1) 16.c.5) 16.c.6) 17 Portable Media and Mobile Device Control All 18 Software Management All 20 Vendor Access and Monitoring All 21 Work Control All 22 Device Access and Key Control All 23 Password/Authenticator Policy All 24 User Account/Credential Policy All 26 Corrective Actions Since Last NRC Inspection All In addition to the above information please provide the following:
| |
| The documented CSP assessment and analysis for each CDA in each of the selected system s 4 SUSQUEHANNA STEAM ELECTRIC STATION CYBER-SECURITY INSPECTION DOCUMENT REQUEST III. Information Requested to be Available on First Day of Inspection For the specific systems and equipment identified in this enclosure's Section II., provide the following RFI (i.e., Table 1 ST Week Onsite
| |
| ) on a CD by October 15, 2018, the first day of the inspection
| |
| . All requested information shall follow the Table 1 ST Week Onsite and the guidance document referenced above.
| |
| | |
| Please provide four copies of each CD submitted (i.e., one for each inspector/contractor). The preferred file format for all lists is a searchable Excel spreadsheet file on a CD. These CDs should be indexed and hyper-linked to facilitate ease of use. If you have any questions regarding this information, please call the inspection team leader as soon as possible.
| |
| | |
| Table 1 ST Week Onsite Section 3 , Paragraph Number/Title:
| |
| ` Items 10 Host-Based Intrusion Detection System Documentation for CDAs for systems selected for inspection 10.a.3) thru 10.a.12) 11 NIDS Documentation for Critical Systems That Have CDAs Associated with Them 11.a.3) thru 11.a.15) 12 SIEM Documentation for Critical Systems That Have CDAs Associated with Them 12.a.3) thru 12.a.14) 16 Supply Chain Management 16.c.2) 16.c.3) 16.c.4) 19 Cyber Security Event Notifications All In addition to the above information please provide the following:
| |
| (1) Copies of the following documents do not need to be solely available to the inspection team as long as the inspectors have easy and unrestrained access to them: a. Original Final Safety Analysis Report Volumes; b. Original Safety Evaluation Report and Supplements; c. Final Safety Analysis Report Question and Answers; d. Quality Assurance (QA) Plan; e. Latest Individual Plant Examination for External Events/Probabilistic Risk Assessment Report; and f. Vendor Manuals (2) Assessment and Corrective Actions: | |
| a. The most recent Cyber Security QA audit and/or self-assessment; and b. Corrective action documents (e.g., condition reports, including status of corrective actions) generate d as a result of the most recent Cyber Security QA audit and/or self-assessment.
| |
| | |
| 5 SUSQUEHANNA STEAM ELECTRIC STATION CYBER-SECURITY INSPECTION DOCUMENT REQUEST IV. Information Requested To Be Provided Throughout the Inspection (1) Copies of any corrective action documents generated as a result of the inspection team's questions or queries during th e inspection.
| |
| | |
| (2) Copies of the list of questions submitted by the inspection team members and the status/resolution of the information requested (provide d daily during the inspection to each inspection team member).
| |
| | |
| If you have any questions regarding the information requested, please contact the inspection team leader.
| |
| }} | | }} |
|
|---|
Category:Inspection Report
MONTHYEARIR 05000387/20240102024-11-13013 November 2024
Biennial Problem Identification and Resolution Inspection Report 05000387/2024010 and 05000388/2024010
IR 05000387/20245012024-11-13013 November 2024
Emergency Preparedness Biennial Exercise Inspection Report 05000387/2024501 and 05000388/2024501
IR 05000387/20240032024-11-12012 November 2024
Integrated Inspection Report 05000387/2024003 and 05000388/2024003
IR 05000387/20240052024-08-29029 August 2024
Updated Inspection Plan for Susquehanna Steam Electric Station, Units 1 and 2 (Report 05000387/2024005 and 05000388/2024005)
IR 05000387/20240022024-08-12012 August 2024
Integrated Inspection Report 05000387/2024002 and 05000388/2024002
IR 05000387/20240012024-05-13013 May 2024
Integrated Inspection Report 05000387/2024001 and 05000388/2024001
IR 05000387/20244042024-05-0707 May 2024
Information Request for the Cybersecurity Baseline Inspection, Notification to Perform Inspection 05000387/2024404 and 05000388/2024404
IR 05000387/20240112024-02-29029 February 2024
Commercial Grade Dedication Inspection Report 05000387/2024011 and 05000388/2024011
IR 05000387/20230062024-02-28028 February 2024
Annual Assessment Letter for Susquehanna Steam Electric Station, Units 1 and 2 (Reports 05000387/2023006 and 05000388/2023006)
IR 05000387/20230042024-02-0707 February 2024
Integrated Inspection Report 05000387/2023004 and 05000388/2023004
IR 05000387/20230102023-12-11011 December 2023
Fire Protection Team Inspection Report 05000387/2023010 and 05000388/2023010
IR 05000387/20230032023-11-0303 November 2023
Integrated Inspection Report 05000387/2023003 and 05000388/2023003
IR 05000387/20233012023-09-20020 September 2023
Initial Operator Licensing Examination Report 05000387/2023301 and 05000388/2023301
IR 05000387/20230052023-08-31031 August 2023
Updated Inspection Plan for Susquehanna Steam Electric Station, Units 1 and 2 (Report 05000387/2023005 and 05000388/2023005)
IR 05000387/20230022023-08-0101 August 2023
Integrated Inspection Report 05000387/2023002 and 05000388/2023002
IR 05000387/20234012023-06-0707 June 2023
Security Baseline Inspection Report 05000387/2023401 and 05000388/2023401
IR 05000387/20230012023-05-12012 May 2023
Integrated Inspection Report 05000387/2023001 and 05000388/2023001
IR 05000387/20220062023-03-0101 March 2023
Annual Assessment Letter for Susquehanna Steam Electric Station, Units 1 and 2 (Reports 05000387/2022006 and 05000388/2022006)
IR 05000387/20220042023-02-0808 February 2023
Integrated Inspection Report 05000387/2022004 and 05000388/2022004
IR 07200028/20220012022-12-15015 December 2022
Independent Spent Fuel Storage Installation (ISFSI) - NRC Inspection Report No. 07200028/2022001
IR 05000387/20224032022-11-29029 November 2022
Security Baseline Inspection Report 05000387/2022403 and 05000388/2022403
IR 05000387/20225012022-11-28028 November 2022
Emergency Preparedness Biennial Exercise Inspection Report 05000387/2022501 and 05000388/2022501
IR 05000387/20220032022-11-0808 November 2022
Integrated Inspection Report 05000387/2022003 and 05000388/2022003
IR 05000387/20220052022-08-31031 August 2022
Updated Inspection Plan for Susquehanna Steam Electric Station, Units 1 and 2 (Report 05000387/2022005 and 05000388/2022005)
IR 05000387/20220102022-08-11011 August 2022
Biennial Problem Identification and Resolution Inspection Report 05000387/2022010 and 05000388/2022010
IR 05000387/20224012022-08-11011 August 2022
Material Control and Accounting Program Inspection Report 05000387/2022401 and 05000388/2022401 (Cover Letter Only)
IR 05000387/20220022022-08-0404 August 2022
Integrated Inspection Report 05000387/2022002 and 05000388/2022002
IR 05000387/20224042022-05-26026 May 2022
Information Request for the Cyber Security Baseline Inspection, Notification to Perform Inspection 05000387/2022404 and 05000388/2022404
IR 05000387/20220012022-05-0909 May 2022
Integrated Inspection Report 05000387/2022001 and 05000388/2022001
IR 05000387/20220112022-03-0707 March 2022
Post-Approval Site Inspection for License Renewal - Phase 2 Inspection Report 05000387/2022011
IR 05000387/20210062022-03-0202 March 2022
Annual Assessment Letter for Susquehanna Steam Electric Station, Units 1 and 2 (Reports 05000387/2021006 and 05000388/2021006)
IR 05000387/20224022022-02-16016 February 2022
Security Baseline Inspection Report 05000387/2022402 and 05000388/2022402
IR 05000387/20214032022-02-11011 February 2022
Cyber Security Problem Identification and Resolution Inspection Report 05000387/2021403 and 05000388/2021403 (Cover Letter Only)
IR 05000387/20210042022-02-11011 February 2022
Integrated Inspection Report 05000387/2021004 and 05000388/2021004
IR 05000387/20220132022-02-10010 February 2022
Information Request for a Triennial Baseline Design Bases Assurance Inspection (Team); Inspection Report 05000387/2022013 and 05000388/2022013
IR 05000387/20210102021-12-13013 December 2021
Design Basis Assurance Inspection (Programs) Inspection Report 05000387/2021010 and 05000388/2021010
IR 05000387/20210112021-11-0404 November 2021
Temporary Instruction 2515/194 Inspection Report 05000387/2021011 and 05000388/2021011
IR 05000387/20210032021-11-0303 November 2021
Integrated Inspection Report 05000387/2021003 and 05000388/2021003
IR 05000387/20214012021-10-25025 October 2021
Security Baseline Inspection Report 05000387/2021401 and 05000388/2021401
IR 05000387/20214022021-09-23023 September 2021
Security Baseline Inspection Report 05000387/2021402 and 05000388/2021402
IR 05000387/20213012021-09-17017 September 2021
Initial Operator Licensing Examination Report 05000387/2021301 and 05000388/2021301
IR 05000387/20210052021-09-0101 September 2021
Updated Inspection Plan for the Susquehanna Steam Electric Station, Units 1 and 2 (Report 05000387/2021005 and 05000388/2021005)
ML21224A2402021-08-24024 August 2021
Security Baseline Inspection Report Cover Letter 2021 FOF
IR 05000387/20210022021-08-0404 August 2021
Integrated Inspection Report 05000387/2021002 and 05000388/2021002
IR 05000387/20210012021-05-0505 May 2021
Integrated Inspection Report 05000387/2021001 and 05000388/2021001
IR 05000388/20210122021-03-0404 March 2021
EA-20-131: Susquehanna Steam Electric Station, Unit 2 - NRC Investigation Report No. 1-2020-001 and NRC Inspection Report No. 05000388/2021012
IR 05000387/20200062021-03-0303 March 2021
Annual Assessment Letter for Susquehanna Steam Electric Station, Units 1 and 2 (Reports 05000387/2020006 and 05000388/2020006)
IR 05000387/20204032021-02-10010 February 2021
Cyber Security Problem Identification and Resolution Inspection Report 05000387/2020403 and 05000388/2020403 (Cover Letter Only)
IR 05000387/20200042021-02-0808 February 2021
Integrated Inspection Report 05000387/2020004 and 05000388/2020004
IR 05000387/20205012020-11-18018 November 2020
Emergency Preparedness Biennial Exercise Inspection Report 05000387/2020501 and 05000388/2020501
2024-08-29
[Table view]
Category:Letter
MONTHYEARIR 05000387/20245012024-11-13013 November 2024
Emergency Preparedness Biennial Exercise Inspection Report 05000387/2024501 and 05000388/2024501
IR 05000387/20240102024-11-13013 November 2024
Biennial Problem Identification and Resolution Inspection Report 05000387/2024010 and 05000388/2024010
IR 05000387/20240032024-11-12012 November 2024
Integrated Inspection Report 05000387/2024003 and 05000388/2024003
PLA-8135, Specification 5.5.12, Primary Containment Leakage Rate Testing Program, for Permanent Extension of Type a and Type Leak Rate Testing Frequencies and Permanently Extend the Drywell Bypass Leakage Test Frequency - PLA-81352024-11-0101 November 2024
Specification 5.5.12, Primary Containment Leakage Rate Testing Program, for Permanent Extension of Type a and Type Leak Rate Testing Frequencies and Permanently Extend the Drywell Bypass Leakage Test Frequency - PLA-8135
ML24289A1252024-10-22022 October 2024
– Authorized Alternative to Requirements of the ASME OM Code
PLA-8145, Biennial 10 CFR 50.59 and 72.48 Summary Report and Changes to Regulatory Commitments - PLA-81452024-10-21021 October 2024
Biennial 10 CFR 50.59 and 72.48 Summary Report and Changes to Regulatory Commitments - PLA-8145
ML24291A1562024-10-16016 October 2024
Missed Annual Inventory Required by 40 CFR 266, Subpart in PLE 0026645
PLA-8148, Registration for the Use of Spent Fuel Storage Casks 311, 308, and 3102024-10-15015 October 2024
Registration for the Use of Spent Fuel Storage Casks 311, 308, and 310
PLA-8141, Response to Request for Additional Information Regarding Relief Request 1RR06, PLA-81412024-09-18018 September 2024
Response to Request for Additional Information Regarding Relief Request 1RR06, PLA-8141
PLA-8142, Registration for the Use of Spent Fuel Storage Casks 306, 309, and 307 - PLA-81422024-09-18018 September 2024
Registration for the Use of Spent Fuel Storage Casks 306, 309, and 307 - PLA-8142
ML24260A2312024-09-17017 September 2024
Senior Reactor and Reactor Operator Initial License Examinations
05000387/LER-2024-002, B Diesel Generator Inoperable Due to Failed Excitation System Linear Reactor2024-09-16016 September 2024
B Diesel Generator Inoperable Due to Failed Excitation System Linear Reactor
ML24255A8642024-09-0606 September 2024
Rscc Wire & Cable LLC Dba Marmon Industrial Energy & Infrastructure - Part 21 Retraction of Final Notification
ML24249A1362024-09-0404 September 2024
EN 57304 - Westinghouse Electric Company, LLC, Final Report - No Embedded Files. Notification of the Potential Existence of Defects Pursuant to 10 CFR Part 21
ML24233A2192024-09-0303 September 2024
– Authorized Alternative to Requirements of the American Society of Mechanical Engineers Boiler and Pressure Vessel Code
IR 05000387/20240052024-08-29029 August 2024
Updated Inspection Plan for Susquehanna Steam Electric Station, Units 1 and 2 (Report 05000387/2024005 and 05000388/2024005)
05000387/LER-2023-004-01, Manual Reactor Scram Due to Degraded Main Condenser Vacuum2024-08-26026 August 2024
Manual Reactor Scram Due to Degraded Main Condenser Vacuum
05000387/LER-2024-001-01, Main Steam Isolation Valve Leakage Due to Valve Body Seat Wear2024-08-21021 August 2024
Main Steam Isolation Valve Leakage Due to Valve Body Seat Wear
IR 05000387/20240022024-08-12012 August 2024
Integrated Inspection Report 05000387/2024002 and 05000388/2024002
ML24208A0962024-07-25025 July 2024
57243-EN 57243 - Rssc Wire & Cable LLC, Dba Marmon - Part 21 Notification
PLA-8117, 23rd Refueling Outage Owners Activity Report (PLA-8117)2024-07-23023 July 2024
23rd Refueling Outage Owners Activity Report (PLA-8117)
ML24197A0982024-07-15015 July 2024
Request for Information for a Biennial Problem Identification and Resolution Inspection; Inspection Report 05000387/2024010 and 05000388/2024010
ML24127A2262024-05-29029 May 2024
Issuance of Amendment Nos. 288 and 272 Adoption of TSTF-563
PLA-8126, Response to Request for Confirmation of Information Regarding Relief Request 1RR062024-05-29029 May 2024
Response to Request for Confirmation of Information Regarding Relief Request 1RR06
PLA-8122, Annual Radiological Environmental Operating Report (PLA-8122)2024-05-28028 May 2024
Annual Radiological Environmental Operating Report (PLA-8122)
PLA-8115, Relief Request IRR06 One Time Extension to the Fourth 10-Year Inservice Testing Program Interval (PLA-8115)2024-05-23023 May 2024
Relief Request IRR06 One Time Extension to the Fourth 10-Year Inservice Testing Program Interval (PLA-8115)
05000387/LER-2024-001, Main Steam Isolation Valve Leakage2024-05-23023 May 2024
Main Steam Isolation Valve Leakage
IR 05000387/20240012024-05-13013 May 2024
Integrated Inspection Report 05000387/2024001 and 05000388/2024001
IR 05000387/20244042024-05-0707 May 2024
Information Request for the Cybersecurity Baseline Inspection, Notification to Perform Inspection 05000387/2024404 and 05000388/2024404
PLA-8094, Radioactive Effluent Release Report and Offsite Dose Calculation Manual PLA-80942024-04-22022 April 2024
Radioactive Effluent Release Report and Offsite Dose Calculation Manual PLA-8094
PLA-8095, 2023 Annual Radiological Environmental Operating Report (PLA-8095)2024-04-22022 April 2024
2023 Annual Radiological Environmental Operating Report (PLA-8095)
PLA-8101, Re 2023 Annual Report of Radiation Exposure2024-04-22022 April 2024
Re 2023 Annual Report of Radiation Exposure
ML24082A1372024-04-22022 April 2024
Issuance of Amendment Nos. 287 and 271 Adoption of TSTF-568, Revision 2 and Associated Technical Specification Changes
PLA-8102, Annual Environmental Operating Report (Nonradiological) PLA-81022024-04-11011 April 2024
Annual Environmental Operating Report (Nonradiological) PLA-8102
PLA-8113, Response to Request for Additional Information Regarding Relief Request 4RR-11 (PLA-8113)2024-04-11011 April 2024
Response to Request for Additional Information Regarding Relief Request 4RR-11 (PLA-8113)
PLA-8112, Relief Request 4RR-11 Relief from End of Interval Boundary Leakage Test PLA-81122024-04-0909 April 2024
Relief Request 4RR-11 Relief from End of Interval Boundary Leakage Test PLA-8112
PLA-8110, Submittal of Unit 1 Cycle 24 Core Operating License Report (Pla 8110)2024-04-0404 April 2024
Submittal of Unit 1 Cycle 24 Core Operating License Report (Pla 8110)
PLA-8100, Property Insurance Program (PLA-8100)2024-04-0101 April 2024
Property Insurance Program (PLA-8100)
PLA-8098, Annual Financial Report (PLA-8098)2024-04-0101 April 2024
Annual Financial Report (PLA-8098)
PLA-8109, Supplement to Request for Exemption from Certain Requirements of 10 CR 72.212 and 10 CFR 72.214 Resulting from Fuel Basket Design Control Compliance (PLA-8109)2024-03-21021 March 2024
Supplement to Request for Exemption from Certain Requirements of 10 CR 72.212 and 10 CFR 72.214 Resulting from Fuel Basket Design Control Compliance (PLA-8109)
PLA-8107, Request for Exemption from Certain Requirements of 10 CFR 72.212 and 10 CFR 72.214 Resulting from Fuel Basket Design Control Compliance2024-03-19019 March 2024
Request for Exemption from Certain Requirements of 10 CFR 72.212 and 10 CFR 72.214 Resulting from Fuel Basket Design Control Compliance
ML24067A2512024-03-19019 March 2024
Authorized Alternative to Requirements of the ASME Code
ML24044A2532024-03-14014 March 2024
Associated Independent Spent Fuel Storage Installation – Exemption from Select Requirements of 10 CFR Part 73 (EPID L-2023-LLE-0077 (Security Notifications, Reports, and Recordkeeping & Suspicious Activity Reporting))
IR 05000387/20240112024-02-29029 February 2024
Commercial Grade Dedication Inspection Report 05000387/2024011 and 05000388/2024011
IR 05000387/20230062024-02-28028 February 2024
Annual Assessment Letter for Susquehanna Steam Electric Station, Units 1 and 2 (Reports 05000387/2023006 and 05000388/2023006)
ML24039A1882024-02-27027 February 2024
Issuance of Amendment Nos. 286 and 270 Changes to Technical Specifications for Control Rods
ML24037A3072024-02-22022 February 2024
Summary of Regulatory Audit in Support of Relief Request 5RR-02
PLA-8099, Proof of Financial Protection and Guarantee of Payment of Deferred Premiums (PLA-8099)2024-02-13013 February 2024
Proof of Financial Protection and Guarantee of Payment of Deferred Premiums (PLA-8099)
IR 05000387/20230042024-02-0707 February 2024
Integrated Inspection Report 05000387/2023004 and 05000388/2023004
05000387/LER-2023-004, Manual Reactor Scram Due to Degraded Main Condenser Vacuum2024-01-0909 January 2024
Manual Reactor Scram Due to Degraded Main Condenser Vacuum
2024-09-06
[Table view] |
Text
UNITED STATES NUCLEAR REGULATORY COMMISSION ber 6, 2018
SUBJECT:
SUSQUEHANNA STEAM ELECTRIC STATION - CYBER SECURITY INSPECTION REPORT 05000387/2018403 AND 05000388/2018403
Dear Mr. Berryman:
On November 1, 2018, the U.S. Nuclear Regulatory Commission (NRC) completed an inspection at Susquehanna Steam Electric Station (Susquehanna), Units 1 and 2. On this date, the NRC inspectors discussed the results of this inspection with Mr. Kevin Cimorelli, Site Vice President, and other members of your staff. The results of this inspection are documented in the enclosed report.
NRC inspectors documented five findings of very low safety significance (Green) in this report.
These findings involved a violation of the NRC requirements. Additionally, NRC inspectors documented a licensee-identified violation which was determined to be of very low safety significance in this report. The NRC is treating these violations as non-cited violations (NCVs)
consistent with Section 2.3.2.a of the Enforcement Policy.
Five cross-cutting aspects were assigned to findings in the areas of Human Performance and Problem Identification and Resolution. Specifically, because Susquehanna failed to use a systematic process for evaluating and implementing changes so that nuclear safety remains the overriding priority [H.3]; failed to create and maintain complete, accurate, and up-to-date documentations [H.7]; failed to identify issues completely, accurately, and in a timely manner in accordance with the corrective action program [P.1]; and failed to systematically and effectively collect, evaluate, and implement relevant internal and external operating experience in a timely manner [P.5].
Enclosure transmitted herewith contains Sensitive, Unclassified, Non-Safeguards Information. When separated from the Enclosure, the transmittal document is decontrolled. If you contest the violations or significance of these NCVs, you should provide a response within 30 days of the date of this inspection report, with the basis for your denial, to the U.S. Nuclear Regulatory Commission, ATTN: Document Control Desk, Washington, DC 20555-0001; with copies to the Regional Administrator, Region I; the Director, Office of Enforcement; and the NRC Resident Inspector at Susquehanna. In addition, if you disagree with cross-cutting aspects assignment, you should provide a response within 30 days of the date of this inspection report, with the basis for your disagreement, to the U. S. Nuclear Regulatory Commission, ATTN:
Document Control Desk, Washington, DC, 20555-0001; with copies to the Regional Administrator, Region I and the NRC Resident Inspector at Susquehanna.
This letter will be made available for public inspection and copying at http://www.nrc.gov/reading-rm/adams.html and the NRC Public Document Room in accordance with Title 10 of the Code of Federal Regulations (10 CFR), Part 2.390, Public Inspections, Exemptions, Requests for Withholding.
However, the enclosed report contains Security-Related Information, so the enclosed report will not be made publically available in accordance with 10 CFR 2.390(d)(1). If you choose to provide a response that contains Security-Related Information, please mark your entire response Security-Related Information-Withhold from Public Disclosure under 10 CFR 2.390 in accordance with 10 CFR 2.390(d)(1) and follow the instructions for withholding in 10 CFR 2.390(b)(1). The NRC is waiving the affidavit requirements for your response in accordance with 10 CFR 2.390(b)(1)(ii).
Sincerely,
/RA/
Glenn T. Dentel, Chief Engineering Branch 2 Division of Reactor Safety Docket Numbers: 50-387 and 50-388 License Numbers: NPF-14 and NPF-22 Enclosure:
Non-Public Inspection Report 05000387/2018403 and 05000388/2018403 (OUO-SRI)
cc w/o encl; w/o OUO-SRI:
Distribution via ListServ cc w/encl; w/OUO-SRI:
KLore, Manager, Nuclear Security DAllard, Director, PA DEP ML18341A107 (Cover letter)
ADAMS ACCESSION NUMBER: ML18341A114 (Cover letter w/enclosure-OUO-SRI)
Cover Letter Non-Sensitive Publicly Available SUNSI Review Sensitive Non-Publicly Available Cover Letter w/ Enclosure Non-Sensitive Publicly Available SUNSI Review Sensitive Non-Publicly Available OFFICE RI/DRS RI/DRS RI/DRP RI/DRS NAME JPatel DWerkheiser via email JGreives GDentel DATE 11/20/18 12/4/18 12/5/18 12/6/18
