• Document: ISA220 Risk Management Framework for Practitioners Lesson Initiating a DoD Security Plan
  • Size: 3.09 MB
  • Uploaded: 2018-12-08 20:09:14
  • Status: Successfully converted


Some snippets from your converted document:

ISA220 Risk Management Framework for Practitioners Lesson 3 .5 - Initiating a DoD Security Plan RESOURCES I PRINT I HELP Init iating the Security Plan In RMF Step 1, we initiate the OoD Securi ty Plan ; however, it is a living document and updated regularly throughout the ac quisition life c ycle . It is a conceptual body of information which may be accounted for within one or more repositories and includes documents that come from a variety of sources. For example, Information System Owners inheriting common ' controls c an either document the implementation of the controls in their respec tive Securi ty Plans or reference the controls contained in the Securi ty Plans of common control providers . I ~ I Page 1 of 26 I ..... Back Next I SA 220 Ris k Man agem ent Framework f o r Practitio n e rs Lesson 3.5 - Initiating a DoD Security Plan RESOURCES I PRINT I HELP The DoD Security Plan The DoD Security Plan is initiated by the Information or PIT System Owner or Common Control Provider (with collaboration of the security staff). The Security Plan: • Provides an overview of the security of the Information or PIT System and describes the controls and critical elements in place or planned for, based upon DoD Standards • Provides sufficient information to enable an understanding of the intended expression of each securi ty con trol in the context of the Information or PIT System Security PJall ..... I P• ge2of26 I .... Back & 1 Next ISA220 Risk Management Framework for Practitioners Lesson 3.S - Initiating a DoD Security Plan RESOURCES I PRINT I HELP The DoD Security Plan Template The Securi ty Plan is t he anchoring document to your system's Securit y Aut horizat ion Package you will submit t o t he AO. It has cont ri butions from many sources and provides detailed informat ion about t he system . The RMF Knowledge Service (KS) provides a DoD Securi ty Plan t em plate t hat cont ains 38 distinct fi elds wit h content descriptions and inst ruct ions. Although many fields are self-explanatory, I will provide more narrative examples, apply ing re levant information from our AFS to t he numbered fields wit hin t he t empla te t o better understand t he ty pes of informat ion you may include in a Securi ty Plan. Please select the magnifying glass icon to view a portion of the Security Plan template. ..... I Pa ge 3 of 26 I .... Back Ciil ) Next The OoO Security Plan Template x OoO S ecurity Plan [S P] System Name: 6 VersiorlAelease II: 11 Authorization Terminat! 1 Date: 2 System Identification: 7 DoD Component: 12 Governi Mission Are - Please Select - - Please Select ­ !---+~~~~~~~~~~~~~--+-~--<' 3 B Ports. Protocols, & Services Acronym: 13 Se M<111<1gement (PPSMJ Flegistry Number: . C\Slt Aevtew

Recently converted files (publicly available):