← Back to catalog
PM-8
Critical Infrastructure Plan
Program Management (PM)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description
Address information security and privacy issues in the development, documentation, and updating of a critical infrastructure and key resources protection plan.
Discussion
Protection strategies are based on the prioritization of critical assets and resources. The requirement and guidance for defining critical infrastructure and key resources and for preparing an associated critical infrastructure protection plan are found in applicable laws, executive orders, directives, policies, regulations, standards, and guidelines.
Implementation guidance
No content available.
CSF 2.0 crosswalk
GV.OC-04Critical objectives, capabilities, and services that external stakeholders depend on or expect from the organization are understood and communicatedGovern
RC.RP-04Critical mission functions and cybersecurity risk management are considered to establish post-incident operational normsRecover