|
PL-01
|
Policy and Procedures |
|
|
|
|
|
PL-02
|
System Security and Privacy Plans |
|
|
|
|
|
PL-02(01)
|
Concept of Operations |
Incorporated into
PL-7.
|
|
PL-02(02)
|
Functional Architecture |
Incorporated into
PL-8.
|
|
PL-02(03)
|
Plan and Coordinate with Other Organizational Entities |
Incorporated into
PL-2.
|
|
PL-03
|
System Security Plan Update |
Incorporated into
PL-2.
|
|
PL-04
|
Rules of Behavior |
|
|
|
|
|
PL-04(01)
|
Social Media and External Site/Application Usage Restrictions |
|
|
|
|
|
PL-05
|
Privacy Impact Assessment |
Incorporated into
RA-8.
|
|
PL-06
|
Security-related Activity Planning |
Incorporated into
PL-2.
|
|
PL-07
|
Concept of Operations |
|
|
|
|
|
PL-08
|
Security and Privacy Architectures |
|
|
|
|
|
PL-08(01)
|
Defense in Depth |
|
|
|
|
|
PL-08(02)
|
Supplier Diversity |
|
|
|
|
|
PL-09
|
Central Management |
|
|
|
|
|
PL-10
|
Baseline Selection |
|
|
|
|
|
PL-11
|
Baseline Tailoring |
|
|
|
|