The IT Law Wiki
Don't have an account?
Register
Advertisement
Register
in: Security, Definition

Security plan

Edit

Definition[]

General[]

A security plan is

[a]n official document that describes the use of resources by a facility to protect the facility, its sites, and its assets from attack.[1]

Information system[]

A security plan is a

[f]ormal document that provides an overview of the security requirements for an information system or an information security program and describes the security controls in place or planned for meeting those requirements.[2]

References[]

  1. DOE Manual 470.4-7, at 54.
  2. NIST Special Publication 800-53, Rev. 3, at B-13.
Community content is available under CC-BY-SA unless otherwise noted.
Advertisement