Similar Documents at Byron |
---|
Category:Inspection Report
MONTHYEARIR 05000454/20240112024-08-0808 August 2024 Phase 2 Post- Approval License Renewal Report 05000454/2024011 IR 05000454/20240022024-07-26026 July 2024 Integrated Inspection Report 05000454/2024002 and 05000455/2024002, and Exercise of Enforcement Discretion IR 05000454/20240012024-05-10010 May 2024 Integrated Inspection Report 05000454/2024001; 05000455/2024001 and 07200068/2024001 IR 05000454/20244012024-04-0303 April 2024 Cyber Security Inspection Report 05000454/2024401 and 05000455/2024401 (Public) IR 05000454/20230112024-03-20020 March 2024 Fire Protection Team Inspection Report 05000454/2023011 and 05000455/2023011 IR 05000454/20240102024-03-15015 March 2024 Comprehensive Engineering Team Inspection Report 05000454/2024010 and 05000455/2024010 IR 05000454/20230062024-02-28028 February 2024 Annual Assessment Letter for Byron Station, Units 1 and 2 (Report 05000455/2023006 and 05000454/2023006) IR 05000454/20230042024-02-0202 February 2024 Integrated Inspection Report 05000454/2023004 and 05000455/2023004 IR 05000454/20233012023-11-27027 November 2023 NRC Initial License Examination Report 05000454/2023301 and 05000455/2023301 IR 05000454/20230032023-11-13013 November 2023 Integrated Inspection Report 05000454/2023003 and 05000455/2023003 and Exercise of Enforcement Discretion ML23251A1622023-09-29029 September 2023 Steam Generator Tube Inspection Reports to Reflect TSTF-577 Reporting Requirements IR 05000454/20235012023-08-31031 August 2023 Emergency Preparedness Biennial Exercise Inspection Report 05000454/2023501 and 05000455/2023501 IR 05000454/20230052023-08-30030 August 2023 Updated Inspection Plan for Byron Station (Report 05000454/2023005 and 05000455/2023005) IR 05000454/20230022023-08-0303 August 2023 Integrated Inspection Report 05000454/2023002 and 05000455/2023002 IR 05000454/20234022023-07-18018 July 2023 Baseline Security Inspection Document; 05000454/2023402; 05000455/2023402 IR 05000454/20230012023-05-0505 May 2023 Integrated Inspection Report 05000454/2023001 and 05000455/2023001 IR 05000454/20230102023-04-19019 April 2023 License Phase 1 Report 05000454/2023010 IR 05000454/20234012023-03-30030 March 2023 Baseline Security Inspection 05000454/2023401; and 05000455/2023401 IR 05000454/20223012023-03-0707 March 2023 NRC Initial License Examination Report 05000454/2022301 and 05000455/2022301 IR 05000454/20220062023-03-0101 March 2023 Annual Assessment Letter for Byron Station, Units 1 and 2 (Report 05000455/2022006 and 05000454/2022006) IR 05000454/20220042023-02-0101 February 2023 Integrated Inspection Report 05000454/2022004 and 05000455/2022004 IR 05000454/20220102023-01-17017 January 2023 Design Basis Assurance Inspection (Programs) Inspection Report Report 05000454/2022010 and 05000455/2022010 IR 05000454/20224032022-12-28028 December 2022 Cyber Security Inspection Report 05000454/2022403 and 05000455/2022403 IR 05000454/20224052022-12-0909 December 2022 Material Control and Accounting Program Inspection Report 05000454/2022405 and 05000455/2022405 IR 05000454/20220032022-11-0707 November 2022 Integrated Inspection Report 05000454/2022003 and 05000455/2022003 BYRON 2022-0072, Steam Generator Tube Inspection Report for Refueling Outage 232022-10-27027 October 2022 Steam Generator Tube Inspection Report for Refueling Outage 23 IR 05000454/20220052022-08-24024 August 2022 Updated Inspection Plan for Byron Station Units 1 and 2 (Report 05000454/2022005; 05000455/2022005) IR 05000454/20224022022-08-0909 August 2022 Security Baseline Inspection Report 05000454/2022402 and 05000455/2022402 IR 05000454/20220022022-08-0808 August 2022 Integrated Inspection Report 05000454/2022002 and 05000455/2022002 IR 05000454/20220012022-05-0303 May 2022 Integrated Inspection Report 05000454/2022001 and 05000455/2022001 IR 05000454/20224012022-04-0404 April 2022 Security Baseline Inspection Report 05000454/2022401 and 05000455/2022401 IR 05000454/20210062022-03-0202 March 2022 Annual Assessment Letter for Byron Station, Units 1 and 2 (Report 05000454/2021006 and 05000455/2021006) IR 05000454/20210042022-02-11011 February 2022 Integrated Inspection Report 05000454/2021004 and 05000455/2021004 IR 05000454/20210122022-01-0606 January 2022 Biennial Problem Identification and Resolution Inpsection Report 05000454/2021012 and 05000455/2021012 IR 05000454/20213012021-12-17017 December 2021 NRC Initial License Examination Report 05000454/2021301; 05000455/2021301 IR 05000454/20214032021-11-22022 November 2021 Security Baseline Inspection Report 05000454/2021403 and 05000455/2021403 IR 05000454/20210032021-10-29029 October 2021 Integrated Inspection Report 05000454/2021003 and 05000455/2021003 and Exercise of Enforcement Discretion IR 05000454/20214022021-09-28028 September 2021 Security Baseline Inspection Report 05000454/2021402 and 05000455/2021402 IR 05000454/20210052021-09-0101 September 2021 Updated Inspection Plan for Byron Station Units 1 and 2 (05000454/2021005 and 05000455/2021005) IR 05000454/20210022021-08-0404 August 2021 Integrated Inspection Report 05000454/2021002; 05000455/2021002; and 07200068/2021001 IR 05000454/20210112021-05-14014 May 2021 Design Basis Assurance Inspection (Teams) Inspection Report 05000454/2021011 and 05000455/2021011 IR 05000454/20215012021-04-21021 April 2021 Emergency Preparedness Biennial Exercise Inspection Report 05000454/2021501 and 05000455/2021501 IR 05000454/20210012021-04-20020 April 2021 Integrated Inspection Report 05000454/2021001 and 05000455/2021001 IR 05000454/20214012021-03-24024 March 2021 Security Baseline Inspection Report 05000454/2021401 and 05000455/2021401 IR 05000454/20180102021-03-19019 March 2021 Closure of Auxiliary Feedwater System Unresolved Item 05000454/2018010-04 and 05000455/2018010-04 IR 05000454/20200062021-03-0404 March 2021 Annual Assessment Letter for Byron Station (Report 05000454/2020006 and 05000455/2020006) IR 05000454/20210102021-02-0909 February 2021 Triennial Fire Protection Inspection Report 05000454/2021010 and 05000455/2021010 IR 05000454/20200042021-01-27027 January 2021 Integrated Inspection Report 05000454/2020004 and 05000455/2020004 IR 05000454/20204032020-12-16016 December 2020 Security Baseline Inspection Report 05000454/2020403 and 05000455/2020403 IR 05000454/20200032020-11-10010 November 2020 Integrated Inspection Report 05000454/2020003 and 05000455/2020003 2024-08-08
[Table view] Category:Letter
MONTHYEARML24222A6772024-08-0909 August 2024 Response to Request for Additional Information for Application to Revise Technical Specifications to Adopt TSTF-591-A, “Revise Risk Informed Completion Time (RICT) Program” Revision 0 and Revise 10 CFR 50.69 License Condition IR 05000454/20240112024-08-0808 August 2024 Phase 2 Post- Approval License Renewal Report 05000454/2024011 IR 05000454/20240022024-07-26026 July 2024 Integrated Inspection Report 05000454/2024002 and 05000455/2024002, and Exercise of Enforcement Discretion ML24179A3262024-07-23023 July 2024 LTR - Constellation - SG Welds and Nozzles (L-2023-LLR-0053, L-2023-LLR-0054, L-2023-LLR-0055, L-2023-LLR-0056) RS-24-064, Nuclear Radiological Emergency Plan Document Revisions2024-06-28028 June 2024 Nuclear Radiological Emergency Plan Document Revisions RS-24-066, Inservice Testing Interval Extension for Essential Service Water Valves Due to Required Use of Containment Chiller2024-06-25025 June 2024 Inservice Testing Interval Extension for Essential Service Water Valves Due to Required Use of Containment Chiller ML24170A7652024-06-19019 June 2024 Confirmation of Initial License Examination RS-24-061, Constellation Energy Generation, LLC, Response to NRC Regulatory Issue Summary 2024-01, Preparation and Scheduling of Operator Licensing Examinations2024-06-14014 June 2024 Constellation Energy Generation, LLC, Response to NRC Regulatory Issue Summary 2024-01, Preparation and Scheduling of Operator Licensing Examinations RS-24-044, License Amendment to Transition to Framatome Gaia Fuel and Exemptions to 10 CFR 50.46 and 10 CFR 50 Appendix K. Attachments 1 to 11 Enclosed2024-05-28028 May 2024 License Amendment to Transition to Framatome Gaia Fuel and Exemptions to 10 CFR 50.46 and 10 CFR 50 Appendix K. Attachments 1 to 11 Enclosed RS-24-043, Application to Remove Power Distribution Monitoring System (Pdms) Details from Technical Specifications2024-05-24024 May 2024 Application to Remove Power Distribution Monitoring System (Pdms) Details from Technical Specifications ML24079A0762024-05-23023 May 2024 Issuance of Amendments to Adopt TSTF 264 ML24142A3352024-05-21021 May 2024 Quad Cities—Information Request to Support the NRC Annual Baseline Emergency Action Level and Emergency Plan Changes RS-24-055, 2023 Corporate Regulatory Commitment Change Summary Report2024-05-17017 May 2024 2023 Corporate Regulatory Commitment Change Summary Report BYRON 2024-0031, Completion of License Renewal Activities Prior to Entering the Period of Extended Operation2024-05-16016 May 2024 Completion of License Renewal Activities Prior to Entering the Period of Extended Operation IR 05000454/20240012024-05-10010 May 2024 Integrated Inspection Report 05000454/2024001; 05000455/2024001 and 07200068/2024001 BYRON 2024-0028, Annual Radiological Environmental Operating Report (AREOR)2024-05-0909 May 2024 Annual Radiological Environmental Operating Report (AREOR) BYRON 2024-0022, 2023 Regulatory Commitment Change Summary Report2024-05-0202 May 2024 2023 Regulatory Commitment Change Summary Report RS-24-041, Alternative Request to Utilize Code Case OMN-32, Alternative Requirements for Range and Accuracy of Pressure, Flow, and Differential Pressure Instruments Used in Pump Tests2024-04-30030 April 2024 Alternative Request to Utilize Code Case OMN-32, Alternative Requirements for Range and Accuracy of Pressure, Flow, and Differential Pressure Instruments Used in Pump Tests ML24116A1192024-04-25025 April 2024 2023 Annual Radioactive Effluent Release Report (ARERR) RS-24-026, License Amendment to Braidwood Station, Units 1 and 2, and Byron Station, Units 1 and 2, Technical Specifications 5.6.5, Core Operating Limits Report (COLR)2024-04-25025 April 2024 License Amendment to Braidwood Station, Units 1 and 2, and Byron Station, Units 1 and 2, Technical Specifications 5.6.5, Core Operating Limits Report (COLR) ML24113A1272024-04-22022 April 2024 Audit Plan in Support of Review of LAR Revision of TS 3.7.15, 3.7.16, and 4.3.1 (EPID: L-2023-LLA-0136) (Non-Proprietary) ML24113A2892024-04-22022 April 2024 Notification of NRC Baseline Inspection and Request for Information BYRON 2024-0020, Annual Dose Report for 20232024-04-18018 April 2024 Annual Dose Report for 2023 ML24103A2042024-04-12012 April 2024 Constellation Energy Generation, LLC, Application to Revise Technical Specifications to Adopt TSTF-591-A, Revise Risk Informed Completion Time (RICT) Program Revision 0 and Revise 10 CFR 50.69 License Condition BYRON 2024-0021, Registration of Use of Cask to Store Spent Fuel2024-04-11011 April 2024 Registration of Use of Cask to Store Spent Fuel RS-24-034, Annual 10 CFR 50.46 Report of Emergency Core Cooling System Evaluation Model Changes and Errors2024-04-10010 April 2024 Annual 10 CFR 50.46 Report of Emergency Core Cooling System Evaluation Model Changes and Errors IR 05000454/20244012024-04-0303 April 2024 Cyber Security Inspection Report 05000454/2024401 and 05000455/2024401 (Public) RS-24-002, Constellation Energy Generation, LLC - Annual Property Insurance Status Report2024-04-0101 April 2024 Constellation Energy Generation, LLC - Annual Property Insurance Status Report BYRON 2024-0019, Registration of Use of Cask to Store Spent Fuel2024-03-28028 March 2024 Registration of Use of Cask to Store Spent Fuel RS-24-024, Response to Request for Additional Information Regarding Proposed Alternative for Examination of Pressurizer Circumferential and Longitudinal Shell-to-Head Welds and Nozzle-to-Vessel Welds2024-03-22022 March 2024 Response to Request for Additional Information Regarding Proposed Alternative for Examination of Pressurizer Circumferential and Longitudinal Shell-to-Head Welds and Nozzle-to-Vessel Welds IR 05000454/20230112024-03-20020 March 2024 Fire Protection Team Inspection Report 05000454/2023011 and 05000455/2023011 IR 05000454/20240102024-03-15015 March 2024 Comprehensive Engineering Team Inspection Report 05000454/2024010 and 05000455/2024010 IR 05000454/20230062024-02-28028 February 2024 Annual Assessment Letter for Byron Station, Units 1 and 2 (Report 05000455/2023006 and 05000454/2023006) IR 05000454/20230042024-02-0202 February 2024 Integrated Inspection Report 05000454/2023004 and 05000455/2023004 ML24022A2722024-01-23023 January 2024 Request for Information for an NRC Post-Approval Site Inspection for License Renewal Inspection Report 05000454/2024011 ML24018A0362024-01-17017 January 2024 Paragon Energy Solutions, Defect with Detroit Diesel/Mtu Fuel Injectors P/N R5229660 Cat Id 0001390618 ML23320A1762023-12-13013 December 2023 Exemption from Select Requirements of 10 CFR Part 73 (EPID L-2023-LLE-0027 (Security Notifications, Reports, and Recordkeeping and Suspicious Activity Reporting)) ML23277A0032023-12-11011 December 2023 Issuance of Amendments Regarding Adoption of TSTF-370 ML23318A5102023-12-0101 December 2023 Relief from the Requirements of the ASME Code IR 05000454/20233012023-11-27027 November 2023 NRC Initial License Examination Report 05000454/2023301 and 05000455/2023301 BYRON 2023-0065, Unit 2 - Notification of Deviation from Electric Power Research Institute (EPRI) Topical Report MRP-227, Revision 1-A, Materials Reliability Program: Pressurized Water Reactor Internals Inspection and Evaluation Guideline2023-11-17017 November 2023 Unit 2 - Notification of Deviation from Electric Power Research Institute (EPRI) Topical Report MRP-227, Revision 1-A, Materials Reliability Program: Pressurized Water Reactor Internals Inspection and Evaluation Guideline BYRON 2023-0063, Day Inservice Inspection Report for Interval 4, Period 3, (B2R24)2023-11-16016 November 2023 Day Inservice Inspection Report for Interval 4, Period 3, (B2R24) IR 05000454/20230032023-11-13013 November 2023 Integrated Inspection Report 05000454/2023003 and 05000455/2023003 and Exercise of Enforcement Discretion ML23317A1192023-11-10010 November 2023 Constellation Energy Generation, LLC - 2023 Annual Report - Guarantees of Payment of Deferred Premiums RS-23-117, Supplemental Information Letter for Part 73 Exemption Request - Responses to Request for Confirmatory Information2023-11-10010 November 2023 Supplemental Information Letter for Part 73 Exemption Request - Responses to Request for Confirmatory Information ML23313A0852023-11-0909 November 2023 Submittal of 2023-301 Byron Initial License Examination Post-Examination Comments RS-23-114, Proposed Alternative for Examination of Pressurizer Circumferential and Longitudinal Shell-to-Head Welds and Nozzle-to-Vessel Welds2023-11-0101 November 2023 Proposed Alternative for Examination of Pressurizer Circumferential and Longitudinal Shell-to-Head Welds and Nozzle-to-Vessel Welds ML23297A2352023-10-26026 October 2023 Information Request for the Cyber Security Baseline Inspection, Notification to Perform Inspection RS-23-100, Request for Exemption from Enhanced Weapons, Firearms Background Checks, and Security Event Notifications Implementation2023-10-13013 October 2023 Request for Exemption from Enhanced Weapons, Firearms Background Checks, and Security Event Notifications Implementation RS-23-097, Constellation Energy Generation, LLC, Advisement of Leadership Changes and Submittal of Updated Standard Practice Procedures Plans2023-10-12012 October 2023 Constellation Energy Generation, LLC, Advisement of Leadership Changes and Submittal of Updated Standard Practice Procedures Plans 2024-08-09
[Table view] |
See also: IR 05000454/2018410
Text
UNITED STATES
NUCLEAR REGULATORY COMMISSION
REGION III
2443 WARRENVILLE RD. SUITE 210
LISLE, ILLINOIS 60532-4352
January 11, 2018
Mr. Bryan C. Hanson
Senior VP, Exelon Generation Company, LLC
President and CNO, Exelon Nuclear
4300 Winfield Road
Warrenville, IL 60555
SUBJECT: BYRON STATION, UNITS 1 AND 2INFORMATION REQUEST FOR THE
CYBER-SECURITY FULL IMPLEMENTATION INSPECTION, NOTIFICATION
TO PERFORM INSPECTION 05000454/2018410; 05000455/2018410
Dear Mr. Hanson:
On May 21, 2018, the U.S. Nuclear Regulatory Commission (NRC) will begin an inspection in
accordance with Inspection Procedure 71130.10P Cyber-Security, issued May 15, 2017, at
your Byron Station, Units 1 and 2. The inspection will be performed to evaluate and verify your
ability to meet full implementation requirements of the NRCs Cyber-Security Rule, Title 10 of
the Code of Federal Regulations, Part 73, Section 54, Protection of Digital Computer and
Communication Systems and Networks. The onsite portion of the inspection will take place
during the weeks of May 21, 2018, and June 4, 2018.
Experience has shown that these inspections are extremely resource intensive, both for the
NRC inspectors and the licensee staff. In order to minimize the inspection impact on the site
and to ensure a productive inspection for both parties, we have enclosed a request for
documents needed for the inspection. These documents have been divided into four groups.
The first group specifies information necessary to assist the inspection team in choosing
the focus areas (i.e., sample set) to be inspected by the Cyber-Security Inspection
Procedure. This information should be made available via compact disc and delivered to
the regional office no later than February 26, 2018. The inspection team will review this
information and, by March 26, 2018, will request the specific items that should be
provided for review.
The second group of additional requested documents will assist the inspection team in
the evaluation of the critical systems and critical digital assets, defensive architecture,
and the areas of your plants Cyber-Security Program selected for the Cyber-Security
Inspection. This information will be requested for review in the regional office prior to the
inspection by April 23, 2018.
The third group of requested documents consists of those items that the inspection team
will review, or need access to, during the inspection. Please have this information
available by the first day of the onsite inspection, May 21, 2018.
B. Hanson -2-
The fourth group of information is necessary to aid the inspection team in tracking issues
identified as a result of the inspection. It is requested that this information be provided to
the lead inspector as the information is generated during the inspection. It is important
that all of these documents are up to date and complete in order to minimize the number
of additional documents requested during the preparation and/or the onsite portions of
the inspection.
The lead inspector for this inspection is Mr. Dariusz Szwarc. We understand that our regulatory
contact for this inspection is Ms. Zoe Cox of your organization. If there are any questions about
the inspection or the material requested, please contact the lead inspector at 630-829-9803 or
via e-mail at Dariusz.Szwarc@nrc.gov.
This letter does not contain new or amended information collection requirements subject
to the Paperwork Reduction Act of 1995 (44 U.S.C. 3501 et seq.). Existing information
collection requirements were approved by the Office of Management and Budget, Control
Number 3150-0011. The NRC may not conduct or sponsor, and a person is not required to
respond to, a request for information or an information collection requirement unless the
requesting document displays a currently valid Office of Management and Budget Control
Number.
This letter and its enclosure will be made available for public inspection and copying at
http://www.nrc.gov/reading-rm/adams.html and at the NRC Public Document Room in
accordance with 10 CFR 2.390, Public Inspections, Exemptions, Requests for Withholding.
Sincerely,
/RA George Hausman Acting for/
Dariusz Szwarc, Senior Reactor Inspector
Engineering Branch 3
Division of Reactor Safety
Docket Nos. 50-454; 50-455
License Nos. NPF-37; NPF-66
Enclosure:
Document Request for Cyber-Security Inspection
cc: Distribution via LISTSERV
B. Hanson -3-
Letter to Bryan C. Hanson from Dariusz Szwarc dated January 11, 2018
SUBJECT: BYRON STATION, UNITS 1 AND 2INFORMATION REQUEST FOR THE
CYBER-SECURITY FULL IMPLEMENTATION INSPECTION, NOTIFICATION
TO PERFORM INSPECTION 05000454/2018410; 05000455/2018410
DISTRIBUTION:
Jeremy Bowen
RidsNrrDorlLpl3
RidsNrrPMByron Resource
RidsNrrDirsIrib Resource
Steven West
Darrell Roberts
Richard Skokowski
Allan Barker
Carole Ariano
Linda Linn
DRPIII
DRSIII
ADAMS Accession Number ML18012A485
OFFICE RIII RIII RIII RIII
NAME GHausman for
DSzwarc:cl
DATE 01/11/18
OFFICIAL RECORD COPY
DOCUMENT REQUEST FOR CYBER-SECURITY INSPECTION
Inspection Report: 05000454/2018410; 05000455/2018410
Inspection Dates: Weeks of May 21, 2018, and June 4, 2018
Inspection Procedure: IP 71130.10P, Cyber-Security, Issue Date: May 15, 2017
Reference: Guidance Document for Development of the Request for
Information and Notification Letter for Full-Implementation of
the Cyber-Security Inspection, Issue Date October 26, 2017
(ML17156A215)
NRC Inspectors: Dariusz Szwarc, Lead Irfan A. Khan
630-829-9803 630-829-9732
Dariusz.Szwarc@nrc.gov Irfan.Khan@nrc.gov
Rui Li Michael L. Brown
301-287-3587 301-287-3679
Rui.Li@nrc.gov Michael.Brown@nrc.gov
NRC Contractors: Alan B. Konkal Timothy Marshall
561-989-0210 703-964-6891
Alan.Konkal@nrc.gov Timothy.Marshall@nrc.gov
Observers: James D. Beardsley Robert C. Daley
301-287-0908 630-829-9749
James.Beardsley@nrc.gov Robert.Daley@nrc.gov
I. Information Requested for In-Office Preparation
The initial request for information (i.e., first Request for Information (RFI)) concentrates
on providing the inspection team with the general information necessary to select
appropriate components and Cyber-Security Program (CSP) elements to develop a
site-specific inspection plan. The first RFI is used to identify the list of critical systems
and critical digital assets (CSs/CDAs) plus operational and management security control
portions of the CSP to be chosen as the sample set required to be inspected by the
Cyber-Security Inspection Procedure. The first RFIs requested information is specified
below in Table RFI #1. The Table RFI #1 information is requested to be provided to the
regional office by February 26, 2018, or sooner, to facilitate the selection of the specific
items that will be reviewed during the onsite inspection weeks.
Enclosure
DOCUMENT REQUEST FOR CYBER-SECURITY INSPECTION
The inspection team will examine the returned documentation from the first RFI and
identify/select specific systems and equipment (e.g., CSs/CDAs) to provide a more
focused follow-up request to develop the second RFI. The inspection team will submit
the specific systems and equipment list to your staff by March 26, 2018, which will
identify the specific systems and equipment that will be utilized to evaluate the
CSs/CDAs, defensive architecture, and the areas of the licensees CSP selected for the
Cyber-Security Inspection. All requests for this information shall follow the Table RFI #1
and the guidance document referenced above.
The required Table RFI #1 information shall be provided on compact disc (CD) to the
lead inspector by February 26, 2018. Please provide five copies of each CD submitted
(i.e., one for each inspector/contractor). The preferred file format for all lists is a
searchable Excel spreadsheet file. These CDs should be indexed and hyper-linked to
facilitate ease of use. If you have any questions regarding this information, please call
the inspection team leader as soon as possible.
Table RFI #1
Reference Section 3, Paragraph Number/Title: Items
1 List All Identified CSs and CDAs All
2 List CDA Facility and Site EthernetTransmission Control All
Protocol/Internet Protocol Based Local Area Networks (LANs) and
Identify Those LANs That Have Non-CDAs On Them
3 List CDA Facility and Site Non-Ethernet Transmission Control All
Protocol/Internet Protocol Based LANs Including Those Industrial
Networks and Identify LANs That Have Non-CDAs On Them
4 Network Topology Diagrams (Be Sure To Include All Network Intrusion All
Detection Systems and Security Information and Event Managements
(SIEM) for Emergency Preparedness Networks and Security Level 3
and 4 Networks)
8 List All Network Security Boundary Devices for EP Networks and All All
Network Security Boundary Devices for Levels 3 and 4
9 List CDA Wireless Industrial Networks All
11 Network Intrusion Detection System Documentation for CSs That Have 11.a.1)
CDAs Associated with Them 11.a.2)
12 SIEM Documentation for CSs That Have CDAs Associated with Them 12.a.1)
12.a.2)
14 List EP and Security Onsite and Offsite Digital Communication Systems All
25 Cyber-Security Assessment and Cyber-Security Incident Response All
Teams
28 Copy of Current Cyber Security Plan and Copy of 50.54(p) Analysis To All
Support Changes To That Plan
29 Copy Of Any Licensee-Identified Violations and Associated Corrective All
Action Program Documentation To Resolve Issue(s)
2
DOCUMENT REQUEST FOR CYBER-SECURITY INSPECTION
In addition to the above information please provide the following:
(1.) Electronic copy of the Updated Finals Safety Analysis Report and technical
specifications.
(2.) Name(s) and phone numbers for the regulatory and technical contacts.
(3.) Current management and engineering organizational charts.
Based on this information, the inspection team will identify and select specific systems
and equipment (e.g., CSs/CDAs) from the information requested by Table RFI #1 and
submit a list of specific systems and equipment to your staff by March 26, 2018, for the
second RFI (i.e., Table RFI #2).
II. Additional Information Requested to be Available Prior to Inspection
As stated above, in Section I. of this enclosure, the inspection team will examine the
returned documentation requested from Table RFI #1 and submit the list of specific
systems and equipment to your staff by March 26, 2018, for the second RFI
(i.e., Table RFI #2). The second RFI will request additional information required to
evaluate the CSs/CDAs, defensive architecture, and the areas of the licensees CSP
selected for the Cyber-Security Inspection. The additional information requested for
the specific systems and equipment is identified in Table RFI #2. All requests for this
information shall follow the Table RFI #2 and the guidance document referenced above.
The Table RFI #2 information shall be provided on CD to the lead inspector by
April 23, 2018. Please provide five copies of each CD submitted (i.e., one for each
inspector/contractor). The preferred file format for all lists is a searchable Excel
spreadsheet file. These CDs should be indexed and hyper-linked to facilitate ease of
use. If you have any questions regarding this information, please call the inspection
team leader as soon as possible.
Table RFI #2
Reference Section 3, Paragraph Number/Title: Items
5 Plant Computer System Block Diagram (If Plant Computer System Is All
Selected for Inspection)
6 Plant Security System Block Diagram (If Security Computer System Is All
Selected for Inspection)
7 Systems That Are Distributed Block Diagrams (For Systems Selected All
for Inspection)
10 Host-Based Intrusion Detection System Documentation (For CDAs for 10.a.1)
Systems Selected for Inspection) 10.a.2)
13 List All Maintenance and Test Equipment Used On CDAs for Systems All
Selected for Inspection
15 Configuration Management All
16 Supply Chain Management 16.a.
16.b.1)
16.b.5)
16.b.6)
17 Portable Media and Mobile Device Control All
18 Software Management All
3
DOCUMENT REQUEST FOR CYBER-SECURITY INSPECTION
Table RFI #2
Reference Section 3, Paragraph Number/Title: Items
20 Vendor Access and Monitoring All
21 Work Control All
22 Device Access and Key Control All
23 Password/Authenticator Policy All
24 User Account/Credential Policy All
26 Corrective Actions Since Last U.S. Nuclear Regulatory Commission All
Inspection
27 Cyber Security Assessments for Selected Systems All
III. Information Requested to be Available on First Day of Inspection
For the specific systems and equipment identified in this enclosuresSection II., provide
the following RFI (i.e., Table 1st Week Onsite) on CD by May 21, 2018, the first day of
the inspection. All requests for this information shall follow the Table 1st Week Onsite
and the guidance document referenced above.
Please provide five copies of each CD submitted (i.e., one for each inspector/contractor).
The preferred file format for all lists is a searchable Excel spreadsheet file. These CDs
should be indexed and hyper-linked to facilitate ease of use. If you have any questions
regarding this information, please call the inspection team leader as soon as possible.
Table 1st Week Onsite
Reference Section 3, Paragraph Number/Title: Items
10 Host-Based Intrusion Detection System Documentation for CDAs for 10.a.3)
Systems Selected for Inspection thru
10.a.12)
11 Network Intrusion Detection System Documentation for CSs That Have 11.a.3)
CDAs Associated with Them thru
11.a.15)
12 SIEM Documentation for CSs That Have CDAs Associated with Them 12.a.3)
thru
12.a.14)
16 Supply Chain Management 16.b.2)
16.b.3)
16.b.4)
19 Cyber-Security Event Notifications All
29 Update to Licensee Identified Violations and Corrective Action Program All
Actions Taken Since the Initial Request Was Made
In addition to the above information please provide the following:
(1.) Copies of the following documents do not need to be solely available to the
inspection team as long as the inspectors have easy and unrestrained access
to them.
a. Original Final Safety Analysis Report Volumes;
b. Original Safety Evaluation Report and Supplements;
4
DOCUMENT REQUEST FOR CYBER-SECURITY INSPECTION
c. Final Safety Analysis Report Question and Answers;
d. Quality Assurance Plan;
e. Latest Individual Plant Examination/Probabilistic Risk Assessment Report;
and
f. Vendor Manuals.
(2.) Assessment and Corrective Actions:
a. The most recent Cyber-Security Quality Assurance audit and/or
self-assessment; and
b. Corrective action documents (e.g., condition reports, including status of
corrective actions) generate as a result of the most recent Cyber-Security
Quality Assurance audit and/or self-assessment.
IV. Information Requested To Be Provided Throughout the Inspection
(1.) Copies of any corrective action documents generated as a result of the
inspection teams questions or queries during the inspection.
(2.) Copies of the list of questions submitted by the inspection team members and
the status/resolution of the information requested (provided daily during the
inspection to each inspection team member).
If you have any questions regarding the information requested, please contact the inspection
team leader.
5