This plan baselines existing cyber security¬–related activities and controls at our organization against the Guide to Developing a Cyber Security and Risk Mitigation Plan. For areas covered by existing processes and / or technologies, the plan briefly documents how and where this is accomplished. For identified gaps, the plan documents current deviation from the recommended security controls and specifies whether to accept or mitigate the risk, the actions needed to close the gaps, the responsible party, and the implementation timeline.
Login to your subscription to download this Microsoft Word template!