PM-02: Senior Information Security Officer
|
|
base control objective:
The organization appoints a senior information security officer with the mission and
resources to coordinate, develop, implement, and maintain an organization-wide information
security program.
supplemental objective information:
The security officer described in this control is an organizational official.
For a federal agency (as defined in applicable federal laws, Executive Orders, directives, policies,
or regulations) this official is the Senior Agency Information Security Officer. Organizations may
also refer to this organizational official as the Senior Information Security Officer or Chief
Information Security Officer.
enhancements to the base objective:
(1) None.
mapping to FIPS199 baseline:
LOW: org
|
MOD: org
|
HIGH: org
|
related (regimented) controls:
documents referenced in SP800-53rev3 for PM-02:
Document
|
Date
|
Status
|
Title
|
None.
|
|