Definition[]
An Information Security Program Plan is a
“ | [f]ormal document that provides an overview of the security requirements for an organization-wide information security program and describes the program management controls and common controls in place or planned for meeting those requirements.[1] | ” |
References[]
- ↑ NIST Special Publication 800-53, App. B, Glossary.