Definition[]
General[]
A security plan is
“ | [a]n official document that describes the use of resources by a facility to protect the facility, its sites, and its assets from attack.[1] | ” |
Information system[]
A security plan is a
“ | [f]ormal document that provides an overview of the security requirements for an information system or an information security program and describes the security controls in place or planned for meeting those requirements.[2] | ” |
References[]
- ↑ DOE Manual 470.4-7, at 54.
- ↑ NIST Special Publication 800-53, Rev. 3, at B-13.