NIST 800-53 · PM — Program Management
PM-1 Information security program plan
Develop and maintain an organization-wide information security program plan.
Mapped across 10 provisions
Equivalent and related requirements in other frameworks and regulations.
- ISO 27001PartialOfficial mapping
Source: NIST SP 800-53 Rev. 5 / ISO/IEC 27001
A.5.1 Policies for information securityGovernance & security policy
- CCPA / CPRARelatedCurated§1798.100 Consumers' right to know and notice at collection
Governance & security policy
- DORARelatedCuratedArt. 6 ICT risk management framework
Governance & security policy
- GDPRRelatedCuratedArt. 25 Data protection by design and by default
Governance & security policy
- GLBARelatedCurated§314.4(a) Designate a qualified individual
Governance & security policy
- LGPDRelatedCuratedArt. 50 Good practices and governance rules
Governance & security policy
- NIS2RelatedCuratedArt. 21(2)(a) Risk analysis and information system security policies
Governance & security policy
- NIST CSF 2.0RelatedCuratedGV.OC-01 Organizational mission and security role understood
Governance & security policy
- PCI DSSRelatedCuratedReq. 12 Support information security with organizational policies and programs
Governance & security policy
- SOC 2RelatedCuratedCC1.1 Integrity and ethical values
Governance & security policy