PM-08 ยท Critical Infrastructure Plan

Control Description

Address information security and privacy issues in the development, documentation, and updating of a critical infrastructure and key resources protection plan.

Impact Baselines
Security baselines where this control applies
Not in any baseline
Control Properties
SP800-53
organization
Control Statement
The control requirements

Address information security and privacy issues in the development, documentation, and updating of a critical infrastructure and key resources protection plan.

Supplemental Guidance

Protection strategies are based on the prioritization of critical assets and resources. The requirement and guidance for defining critical infrastructure and key resources and for preparing an associated critical infrastructure protection plan are found in applicable laws, executive orders, directives, policies, regulations, standards, and guidelines.

Related NIST Controls
Other NIST 800-53 controls related to this one
CP-02
CP-04
PE-18
PL-02
PM-09
PM-11
PM-18
RA-03
SI-12
References
Executive Order 13636, *Improving Critical Infrastructure Cybersecurity* , February 2013.
Office of Management and Budget Memorandum Circular A-130, *Managing Information as a Strategic Resource* , July 2016.
Homeland Security Presidential Directive 7, *Critical Infrastructure Identification, Prioritization, and Protection* , December 2003.
Department of Homeland Security, *National Infrastructure Protection Plan (NIPP)* , 2009.