. 3.13 PROGRAM MANAGEMENT | NIST SP 800-53

Security and Privacy Controls for Information Systems and Organizations
. Table of Contents
. Executive Summary
. Prologue
. Errata
. News
CHAPTER ONE, INTRODUCTION
CHAPTER TWO, THE FUNDAMENTALS
CHAPTER THREE, THE CONTROLS
. 3.1 ACCESS CONTROL
. 3.2 AWARENESS AND TRAINING
. 3.3 AUDIT AND ACCOUNTABILITY
. 3.4 ASSESSMENT, AUTHORIZATION, AND MONITORING
. 3.5 CONFIGURATION MANAGEMENT
. 3.6 CONTINGENCY PLANNING
. 3.7 IDENTIFICATION AND AUTHENTICATION
. 3.8 INCIDENT RESPONSE
. 3.9 MAINTENANCE
. 3.10 MEDIA PROTECTION
. 3.11 PHYSICAL AND ENVIRONMENTAL PROTECTION
. 3.12 PLANNING
. 3.13 PROGRAM MANAGEMENT
. 3.14 PERSONNEL SECURITY
. 3.15 PERSONALLY IDENTIFIABLE INFORMATION PROCESSING AND TRANSPARENCY
. 3.16 RISK ASSESSMENT
. 3.17 SYSTEM AND SERVICES ACQUISITION
. 3.18 SYSTEM AND COMMUNICATIONS PROTECTION
. 3.19 SYSTEM AND INFORMATION INTEGRITY
. 3.20 SUPPLY CHAIN RISK MANAGEMENT
. REFERENCES
. GLOSSARY
. ACRONYMS
. CONTROL SUMMARIES
- -- TABLE C-1 ACCESS CONTROL FAMILY

This site uses Just the Docs, a documentation theme for Jekyll.

Just the Docs on GitHub

3.13 PROGRAM MANAGEMENT

Quick link to Program Management Summary Table

Table of contents

-- PM-1 INFORMATION SECURITY PROGRAM PLAN
-- PM-2 INFORMATION SECURITY PROGRAM LEADERSHIP ROLE
-- PM-3 INFORMATION SECURITY AND PRIVACY RESOURCES
-- PM-4 PLAN OF ACTION AND MILESTONES PROCESS
-- PM-5 SYSTEM INVENTORY
-- PM-6 MEASURES OF PERFORMANCE
-- PM-7 ENTERPRISE ARCHITECTURE
-- PM-8 CRITICAL INFRASTRUCTURE PLAN
-- PM-9 RISK MANAGEMENT STRATEGY
-- PM-10 AUTHORIZATION PROCESS
-- PM-11 MISSION AND BUSINESS PROCESS DEFINITION
-- PM-12 INSIDER THREAT PROGRAM
-- PM-13 SECURITY AND PRIVACY WORKFORCE
-- PM-14 TESTING, TRAINING, AND MONITORING
-- PM-15 SECURITY AND PRIVACY GROUPS AND ASSOCIATIONS
-- PM-16 THREAT AWARENESS PROGRAM
-- PM-17 PROTECTING CONTROLLED UNCLASSIFIED INFORMATION ON EXTERNAL SYSTEMS
-- PM-18 PRIVACY PROGRAM PLAN
-- PM-19 PRIVACY PROGRAM LEADERSHIP ROLE
-- PM-20 DISSEMINATION OF PRIVACY PROGRAM INFORMATION
-- PM-21 ACCOUNTING OF DISCLOSURES
-- PM-22 PERSONALLY IDENTIFIABLE INFORMATION QUALITY MANAGEMENT
-- PM-23 DATA GOVERNANCE BODY
-- PM-24 DATA INTEGRITY BOARD
-- PM-25 MINIMIZATION OF PERSONALLY IDENTIFIABLE INFORMATION USED IN TESTING, TRAINING, AND RESEARCH
-- PM-26 COMPLAINT MANAGEMENT
-- PM-27 PRIVACY REPORTING
-- PM-28 RISK FRAMING
-- PM-29 RISK MANAGEMENT PROGRAM LEADERSHIP ROLES
-- PM-30 SUPPLY CHAIN RISK MANAGEMENT STRATEGY
-- PM-31 CONTINUOUS MONITORING STRATEGY
-- PM-32 PURPOSING

Copyright © 2017-2020 Patrick Marsceill. Distributed by an MIT license.

Edit this page on GitHub