Cyber Security Event Notifications Final Rule (10 CFR Part 73 burden)

ICR 201508-3150-004

OMB: 3150-0230

Federal Form Document

Forms and Documents
Document
Name
Status
No forms / supporting documents in this ICR. Check IC Document Collections.
IC Document Collections
ICR Details
3150-0230 201508-3150-004
Historical Inactive
NRC
Cyber Security Event Notifications Final Rule (10 CFR Part 73 burden)
New collection (Request for a new OMB Control Number)   No
Regular
Preapproved 10/06/2015
Retrieve Notice of Action (NOA) 08/10/2015
The collection is pre-approved, contingent upon no substantive changes being made to this collection after adoption of the final rule. Otherwise this collection should be re-submitted to OMB for review.
  Inventory as of this Action Requested Previously Approved
10/31/2018 36 Months From Approved
312 0 0
8,551 0 0
939 0 0

FINAL RULE - 10 CFR Part 73, "Cyber Security Event Notifications." The final rule codifies the new requirements under section 73.77, "Cyber Security Event Notifications," and requires licensees subject to the provisions of section 73.54 to report certain cyber security events to the NRC within the timeliness requirements specified. Licensees are required to submit written security follow-up reports to the NRC on NRC Form 366, "Licensee Event Report," for certain notifications made under section 73.77. NOTE: This final rule affects two information collections: Burden associated with NRC Form 366 is being submitted under 3150-0104. Burden associated with 10 CFR Part 73 is being submitted as a request for a new clearance number, with the intent to transfer the burden into 3150-0002 (10 CFR Part 73) after publication of the final rule. All burden at the proposed rule stage was submitted under 3150-0002 (10 CFR Part 73).

PL: Pub.L. 83 - 703 161 Name of Law: Atomic Energy Act of 1954, as amended
   PL: Pub.L. 109 - 58 115 Name of Law: Energy Reorganization Act of 1974, as amended
  
None

3150-AJ37 Final or interim final rulemaking

Yes

1
IC Title Form No. Form Name
10 CFR Part 73 burden from Cyber Security Event Notifications Final Rule

  Total Request Previously Approved Change Due to New Statute Change Due to Agency Discretion Change Due to Adjustment in Estimate Change Due to Potential Violation of the PRA
Annual Number of Responses 312 0 0 312 0 0
Annual Time Burden (Hours) 8,551 0 0 8,551 0 0
Annual Cost Burden (Dollars) 939 0 0 939 0 0
Yes
Changing Regulations
No
The increase in burden is associated with the addition of new cyber security event notification requirements to Part 73, which require licensees subject to the provisions of section 73.54 to: (1) report certain cyber security events to the NRC within the timeliness requirements specified; (2) use their site corrective action program to record information on cyber security events; and (3) submit written security follow-up reports to the NRC for certain notifications made under section 73.77.

$523,404
No
No
No
No
No
Uncollected
Robert Beall 301 415-3874 robert.beall@nrc.gov

  No

On behalf of this Federal agency, I certify that the collection of information encompassed by this request complies with 5 CFR 1320.9 and the related provisions of 5 CFR 1320.8(b)(3).
The following is a summary of the topics, regarding the proposed collection of information, that the certification covers:
 
 
 
 
 
 
 
    (i) Why the information is being collected;
    (ii) Use of information;
    (iii) Burden estimate;
    (iv) Nature of response (voluntary, required for a benefit, or mandatory);
    (v) Nature and extent of confidentiality; and
    (vi) Need to display currently valid OMB control number;
 
 
 
If you are unable to certify compliance with any of these provisions, identify the item by leaving the box unchecked and explain the reason in the Supporting Statement.
08/10/2015


© 2024 OMB.report | Privacy Policy