CYBER SECURITY PLANS

TABLE OF CONTENTS         

DM 3565-000                                                                                      

                                                                                                 

                                                                                                Page

 

Chapter­ 13 – General Information

 

1          Purpose                                                                                             2                     

2          Cancellation                                                                                   2

3          References                                                                                       2

4          Scope                                                                                                3

5          Abbreviations                                                                                 3

6          Definitions                                                                                        3

 

3565-001

Part I – Annual Security Plans for Information Technology (IT) Systems

 

1          Background                                                                                    1                     

2          Policy                                                                                                 1                     

3          Responsibilities                                                                                2

 

 

Tables

 

1          Security Plan Guidance

 

2          Overall Agency Program Plan (Template)

 

3          General Support System (GSS) Security Plan (Template)

 

4          Application Security Plan (Template)

 

           

 

 

                                                          U.S. Department of Agriculture

                                                                                         Washington, D.C.                                                                                                                                                                                 

 

DEPARTMENTAL MANUAL

 

    NUMBER:

  3565-000

 

 

 SUBJECT:

 Cyber Security Plans

 

DATE:

February 17, 2005

 

OPI:    Office of the Chief Information Officer, Cyber Security    

 

CHAPTER 13

GENERAL INFORMATION

 

 

1          PURPOSE

 

This Departmental Manual chapter addresses the types of Cyber Security Plans that must be developed, updated and maintained by all USDA agencies and staff offices.  This includes the Annual

 Security Plans for Information Technology (IT) Systems.

 

 

2          CANCELLATION

 

            This Departmental Manual will be in effect until superseded.

 

 

3          REFERENCES

 

E-Government Act of 2002, Pub. L. No. 107-347, 44 U.S.C. 3531 et seq., Title III, Federal Information Security Management Act (FISMA)

 

Presidential Decision Directive 63, Policy on Critical Infrastructure Protection;

 

Office of Management and Budget Circular A-130, Security of Federal Automated Information Resources, Appendix III;

 

NIST Special Publication 800-18, Guide for Developing Security Plans for Information Technology Systems;

 

Federal Information Security Management Act (FISMA)

 

DR 3440-2, Control and Protection of “Sensitive Security Information”

 

4          SCOPE

 

            This manual applies to all USDA agencies, programs, teams,

            organizations, appointees, employees and other activities.

 

           

5          ABBREVIATIONS

 

AIS                  Automated Information System(s)

CIO                Chief Information Officer

CS                   Cyber Security

FISMA            Federal Information Security Management Act

GSS                 General Support System

IRM                 Information Resources Management

ISSPM             Information Systems Security Program Manager

IT                     Information Technology

NIST                National Institute of Standards and Technology

OCIO             Office of the Chief Information Officer

OMB               Office of Management and Budget

USDA             United States Department of Agriculture