← Back to catalog
PM-8

Critical Infrastructure Plan

Program Management (PM)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description

Address information security and privacy issues in the development, documentation, and updating of a critical infrastructure and key resources protection plan.

Discussion

Protection strategies are based on the prioritization of critical assets and resources. The requirement and guidance for defining critical infrastructure and key resources and for preparing an associated critical infrastructure protection plan are found in applicable laws, executive orders, directives, policies, regulations, standards, and guidelines.

Implementation guidance

No content available.

CSF 2.0 crosswalk
GV.OC-04Critical objectives, capabilities, and services that external stakeholders depend on or expect from the organization are understood and communicatedGovern
RC.RP-04Critical mission functions and cybersecurity risk management are considered to establish post-incident operational normsRecover