{"id":1653,"date":"2024-08-05T17:41:41","date_gmt":"2024-08-05T17:41:41","guid":{"rendered":"https:\/\/www.tarleton.edu\/security-controls-catalog\/?page_id=1653"},"modified":"2024-10-04T16:44:58","modified_gmt":"2024-10-04T16:44:58","slug":"pm-4-plan-of-action-and-milestones-process","status":"publish","type":"page","link":"https:\/\/www.tarleton.edu\/security-controls-catalog\/program-management-pm\/pm-4-plan-of-action-and-milestones-process\/","title":{"rendered":"PM-4: Plan of Action and Milestones Process"},"content":{"rendered":"\n<h1 class=\"wp-block-heading has-large-font-size\">PM-4: Plan of Action and Milestones Process<\/h1>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h2 class=\"wp-block-heading\" style=\"font-size:16px\"><strong>Privacy Baseline:<\/strong> &nbsp;Yes&nbsp;<\/h2>\n\n\n\n<h2 class=\"wp-block-heading\" style=\"font-size:16px\"><strong>DIR Required By:<\/strong> &nbsp;07\/20\/2023&nbsp;<\/h2>\n\n\n\n<h2 class=\"wp-block-heading\" style=\"font-size:16px\"><strong>Review Date: &nbsp;<\/strong>07\/31\/2024&nbsp;<\/h2>\n\n\n\n<ul class=\"wp-block-list its-nested-list\">\n<li>It is the responsibility of the Tarleton President\/CEO, in coordination with the Tarleton Chief Information Security Officer (CISO), to implement a process for ensuring that plans of action and milestones for the security program and associated Tarleton information resources:&nbsp;\n<ul class=\"wp-block-list\">\n<li>Are developed and maintained,&nbsp;<\/li>\n\n\n\n<li>Document the remedial information security actions to adequately respond to risk to Tarleton operations and assets, individuals, other organizations, and&nbsp;<\/li>\n\n\n\n<li>Are reported in accordance with <a href=\"https:\/\/www.cio.gov\/handbook\/reporting\/fisma-reporting\/\" target=\"_blank\" rel=\"noreferrer noopener\">OMB FISMA<\/a> reporting requirements, as applicable.\u00a0<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>The Tarleton CIO, in coordination with the Tarleton CISO, shall review plans of action and milestones for consistency with the university risk management strategy and priorities for risk response actions.&nbsp;\n<ul class=\"wp-block-list\">\n<li>The plan of action and milestones will be included in the biennial Information Security Program Plan and included in reports as documented in <a href=\"https:\/\/www.tarleton.edu\/security-controls-catalog\/planning-pl\/pl-1-planning-policy-and-procedures\/\" data-type=\"page\" data-id=\"1616\">Controls PL-1, Security Planning Policy and Procedures<\/a>, and <a href=\"https:\/\/www.tarleton.edu\/security-controls-catalog\/program-management-pm\/pm-1-information-security-program-plan\/\" data-type=\"page\" data-id=\"1641\">PM-1, Information Security Program Plan<\/a>.&nbsp;<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<hr class=\"wp-block-separator alignfull has-text-color has-tarleton-purple-color has-alpha-channel-opacity has-tarleton-purple-background-color has-background is-style-wide\"\/>\n\n\n\n<h3 class=\"wp-block-heading has-medium-font-size\"><strong>References\/Additional Resources<\/strong><\/h3>\n\n\n\n<p>None.&nbsp; See any applicable internal procedures.&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>PM-4: Plan of Action and Milestones Process Privacy Baseline: &nbsp;Yes&nbsp; DIR Required By: &nbsp;07\/20\/2023&nbsp; Review Date: &nbsp;07\/31\/2024&nbsp; References\/Additional Resources None.&nbsp; See any applicable internal procedures.&nbsp;<\/p>\n","protected":false},"author":1,"featured_media":580,"parent":1520,"menu_order":4,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"inline_featured_image":false,"advgb_blocks_editor_width":"","advgb_blocks_columns_visual_guide":"","footnotes":""},"class_list":["post-1653","page","type-page","status-publish","has-post-thumbnail","hentry"],"acf":[],"coauthors":[],"author_meta":{"author_link":"https:\/\/www.tarleton.edu\/security-controls-catalog\/author\/brian-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-2-3\/","display_name":"brian"},"relative_dates":{"created":"Posted 2 years ago","modified":"Updated 2 years ago"},"absolute_dates":{"created":"Posted on August 5, 2024","modified":"Updated on October 4, 2024"},"absolute_dates_time":{"created":"Posted on August 5, 2024 5:41 pm","modified":"Updated on October 4, 2024 4:44 pm"},"featured_img_caption":"","featured_img":false,"series_order":"","_links":{"self":[{"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/pages\/1653","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/comments?post=1653"}],"version-history":[{"count":0,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/pages\/1653\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/pages\/1520"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/www.tarleton.edu\/security-controls-catalog\/wp-json\/wp\/v2\/media?parent=1653"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}