IR 05000498/2014406: Difference between revisions
StriderTol (talk | contribs) (Created page by program invented by StriderTol) |
StriderTol (talk | contribs) (Created page by program invented by StriderTol) |
||
| Line 1: | Line 1: | ||
{{Adams | {{Adams | ||
| number = | | number = ML15033A104 | ||
| issue date = | | issue date = 02/02/2015 | ||
| title = | | title = IR 05000498/2014406 & 05000499/2014406, December 29, 2014, South Texas Project, Units 1 and 2, NRC Temporary Instruction 2201/004, Inspection of Implementation of Interim Cyber Security Milestones 1-7. | ||
| author name = | | author name = Werner G E | ||
| author affiliation = | | author affiliation = NRC/RGN-IV/DRS/EB-2 | ||
| addressee name = | | addressee name = Koehl D L | ||
| addressee affiliation = | | addressee affiliation = South Texas Project Nuclear Operating Co | ||
| docket = 05000498, 05000499 | | docket = 05000498, 05000499 | ||
| license number = | | license number = NPF-076, NPF-080 | ||
| contact person = | | contact person = | ||
| | | document report number = IR 2014406 | ||
| document type = | | document type = Letter | ||
| page count = | | page count = 5 | ||
}} | }} | ||
| Line 18: | Line 18: | ||
=Text= | =Text= | ||
{{#Wiki_filter:. | {{#Wiki_filter:" " February 2, 2015 | ||
Mr. Dennis President and Chief Executive Officer STP Nuclear Operating Company P.O. Box 289 Wadsworth, TX 77483 | |||
SUBJECT: SOUTH TEXAS PROJECT ELECTRIC GENERATING STATION, UNITS 1 AND 2 - NRC TEMPORARY INSTRUCTION 2201/004, "INSPECTION OF IMPLEMENTATION OF INTERIM CYBER SECURITY MILESTONES 1-7," | |||
INSPECTION REPORT 05000498/2014406; 05000499/2014406 | |||
==Dear Mr. Koehl:== | |||
On December 29, 2014, the U.S. Nuclear Regulatory Commission (NRC) completed a security temporary instruction inspection at your South Texas Project Electric Generating Station, Units 1 and 2. The inspection covered the implementation of interim milestones associated with your cyber security program, as outlined in your approved cyber security plan and described in Temporary Instruction 2201/004, "Inspection of Implementation of Interim Cyber Security Milestones 1-7." The enclosed inspection report documents the inspection results, which were discussed on December 29, 2014, with Mr. A. Capristo, Executive Vice President and Chief Administrative Officer, and other members of your staff. | |||
The inspection examined activities conducted under your license as they relate to safety and compliance with the Commission's rules and regulations and with the conditions of your license. | |||
The inspectors reviewed selected procedures and records, observed activities, and interviewed personnel. NRC inspectors documented two findings of very low significance in this report. These findings involved violations of NRC requirements. Inspectors also documented one licensee-identified violation which was determined to be of very low significance. This violation is listed in Section 4OA7 of this report. The NRC is treating these violations as non-cited violations (NCVs) consistent with Section 2.3.2.a of the Enforcement Policy. These issues were discussed and reviewed during a Security Issues Forum conducted on November 19, 2014. The results of the Security Issues Forum Panel review concluded that although these issues constituted violations of Title 10 of the Code of Federal Regulations (10 CFR), Part 73, Section 54, "Protection of Digital Computer and Communication Systems and Networks," the NRC is exercising enforcement discretion. The NRC is exercising enforcement discretion for these violations because they meet the criteria established in an NRC memorandum, dated July 1, 2013, from Barry C. Westreich, Director, Cyber Security Directorate, Office of Nuclear Security and Incident Response, to each regional office and Director, Division of Reactor Safety, Subject: Enhanced Guidance for Licensee Near-Term Corrective Actions to Address Cyber Security Inspection Findings and Licensee Eligibility for "Good-Faith" Attempt Discretion (ADAMS Accession Number ML13178A203). Consistent with the NRC memorandum, when you complete and close corrective actions associated with these violations, you are requested to provide written notification to the NRC's regional office as to the method and date of closure of the corrective actions for the identified violations. | |||
If you contest the violations or significance of these NCVs, you should provide a response within 30 days of the date of this inspection report, with the basis for your denial, to the U.S. Nuclear Regulatory Commission, ATTN: Document Control Desk, Washington DC 20555-0001; with copies to the Regional Administrator, Region IV; the Director, Office of Enforcement, U.S. Nuclear Regulatory Commission, Washington, DC 20555-0001; and the NRC resident inspector at the South Texas Project Electric Generating Station. | |||
In accordance with Title 10 of the Code of Federal Regulations (10 CFR) 2.390, "Public Inspections, Exemptions, Requests for Withholding," of the NRC's "Rules of Practice," a copy of this letter will be available electronically for public inspection in the NRC's Public Document Room or from the Publicly Available Records (PARS) component of the NRC's Agencywide Documents Access and Management System (ADAMS). ADAMS is accessible from the NRC Web site at http://www.nrc.gov/reading-rm/adams.html (the Public Electronic Reading Room). The material enclosed herewith, however, contains Security-Related Information in accordance with 10 CFR 2.390(d)(1) and its disclosure to unauthorized individuals could present a security vulnerability. Therefore, the material in the enclosure will not be made available electronically for public inspection in the NRC Public Document Room or from the PARS component of NRC's ADAMS. If you choose to provide a response and Security-Related Information is necessary to provide an acceptable response, please mark your entire response "Security-Related Information-Withhold from Public Disclosure under 10 CFR 2.390" in accordance with 10 CFR 2.390(d)(1) and follow the instructions for withholding in 10 CFR 2.390(b)(1). In accordance with 10 CFR 2.390(b)(1)(ii), the NRC is waiving the affidavit requirements for your response. | |||
Sincerely,/RA/ | |||
Gregory E. Werner, Chief Engineering Branch 2 Division of Reactor Safety | |||
Docket Nos.: 50-498; 50-499 License Nos.: NPF-76; NPF-80 | |||
Nonpublic | |||
===Enclosure:=== | ===Enclosure:=== | ||
NRC Inspection Report 05000498/2014406 and 05000499/2014406 | |||
===w/Attachment:=== | |||
Supplemental Information | |||
}} | }} | ||
Revision as of 01:33, 23 February 2018
| ML15033A104 | |
| Person / Time | |
|---|---|
| Site: | South Texas  |
| Issue date: | 02/02/2015 |
| From: | Werner G E NRC/RGN-IV/DRS/EB-2 |
| To: | Koehl D L South Texas |
| References | |
| IR 2014406 | |
| Download: ML15033A104 (5) | |
Text
" " February 2, 2015
Mr. Dennis President and Chief Executive Officer STP Nuclear Operating Company P.O. Box 289 Wadsworth, TX 77483
SUBJECT: SOUTH TEXAS PROJECT ELECTRIC GENERATING STATION, UNITS 1 AND 2 - NRC TEMPORARY INSTRUCTION 2201/004, "INSPECTION OF IMPLEMENTATION OF INTERIM CYBER SECURITY MILESTONES 1-7,"
INSPECTION REPORT 05000498/2014406; 05000499/2014406
Dear Mr. Koehl:
On December 29, 2014, the U.S. Nuclear Regulatory Commission (NRC) completed a security temporary instruction inspection at your South Texas Project Electric Generating Station, Units 1 and 2. The inspection covered the implementation of interim milestones associated with your cyber security program, as outlined in your approved cyber security plan and described in Temporary Instruction 2201/004, "Inspection of Implementation of Interim Cyber Security Milestones 1-7." The enclosed inspection report documents the inspection results, which were discussed on December 29, 2014, with Mr. A. Capristo, Executive Vice President and Chief Administrative Officer, and other members of your staff.
The inspection examined activities conducted under your license as they relate to safety and compliance with the Commission's rules and regulations and with the conditions of your license.
The inspectors reviewed selected procedures and records, observed activities, and interviewed personnel. NRC inspectors documented two findings of very low significance in this report. These findings involved violations of NRC requirements. Inspectors also documented one licensee-identified violation which was determined to be of very low significance. This violation is listed in Section 4OA7 of this report. The NRC is treating these violations as non-cited violations (NCVs) consistent with Section 2.3.2.a of the Enforcement Policy. These issues were discussed and reviewed during a Security Issues Forum conducted on November 19, 2014. The results of the Security Issues Forum Panel review concluded that although these issues constituted violations of Title 10 of the Code of Federal Regulations (10 CFR), Part 73, Section 54, "Protection of Digital Computer and Communication Systems and Networks," the NRC is exercising enforcement discretion. The NRC is exercising enforcement discretion for these violations because they meet the criteria established in an NRC memorandum, dated July 1, 2013, from Barry C. Westreich, Director, Cyber Security Directorate, Office of Nuclear Security and Incident Response, to each regional office and Director, Division of Reactor Safety, Subject: Enhanced Guidance for Licensee Near-Term Corrective Actions to Address Cyber Security Inspection Findings and Licensee Eligibility for "Good-Faith" Attempt Discretion (ADAMS Accession Number ML13178A203). Consistent with the NRC memorandum, when you complete and close corrective actions associated with these violations, you are requested to provide written notification to the NRC's regional office as to the method and date of closure of the corrective actions for the identified violations.
If you contest the violations or significance of these NCVs, you should provide a response within 30 days of the date of this inspection report, with the basis for your denial, to the U.S. Nuclear Regulatory Commission, ATTN: Document Control Desk, Washington DC 20555-0001; with copies to the Regional Administrator, Region IV; the Director, Office of Enforcement, U.S. Nuclear Regulatory Commission, Washington, DC 20555-0001; and the NRC resident inspector at the South Texas Project Electric Generating Station.
In accordance with Title 10 of the Code of Federal Regulations (10 CFR) 2.390, "Public Inspections, Exemptions, Requests for Withholding," of the NRC's "Rules of Practice," a copy of this letter will be available electronically for public inspection in the NRC's Public Document Room or from the Publicly Available Records (PARS) component of the NRC's Agencywide Documents Access and Management System (ADAMS). ADAMS is accessible from the NRC Web site at http://www.nrc.gov/reading-rm/adams.html (the Public Electronic Reading Room). The material enclosed herewith, however, contains Security-Related Information in accordance with 10 CFR 2.390(d)(1) and its disclosure to unauthorized individuals could present a security vulnerability. Therefore, the material in the enclosure will not be made available electronically for public inspection in the NRC Public Document Room or from the PARS component of NRC's ADAMS. If you choose to provide a response and Security-Related Information is necessary to provide an acceptable response, please mark your entire response "Security-Related Information-Withhold from Public Disclosure under 10 CFR 2.390" in accordance with 10 CFR 2.390(d)(1) and follow the instructions for withholding in 10 CFR 2.390(b)(1). In accordance with 10 CFR 2.390(b)(1)(ii), the NRC is waiving the affidavit requirements for your response.
Sincerely,/RA/
Gregory E. Werner, Chief Engineering Branch 2 Division of Reactor Safety
Docket Nos.: 50-498; 50-499 License Nos.: NPF-76; NPF-80
Nonpublic
Enclosure:
NRC Inspection Report 05000498/2014406 and 05000499/2014406
w/Attachment:
Supplemental Information