CMMC 2.0 • LEVEL 2 • SECURITY ASSESSMENT

CA.L2-3.12.4Develop, Document, and Periodically Update System Security Plans

Develop, document, and periodically update system security plans that describe system boundaries, system environments of operation, how security requirements are implemented, and the relationships with or connections to other systems.

NIST 800-171 Mapping

NIST 800-53 Controls

CA-9PL-2

Assessment Objectives

Assessment objectives not available for this requirement.

Practitioner Notes

Practitioner commentary coming soon.

Related CMMC 2.0 Practices

CA.L2-3.12.1 Security Assessment CA.L2-3.12.2 Plan of Action and Milestones CA.L2-3.12.3 Continuous Monitoring