CA-5 Plan of Action and Milestones

Description

Plans of action and milestones are key documents in security authorization packages and are subject to federal reporting requirements established by OMB.

Applicability

The intended audience includes information resource owners and custodians.

Implementation

TAMU-CC shall:

  1. Develop and update, a plan of action and milestones for the information system that documents the TAMU-CC’s planned, implemented, and evaluated remedial actions to correct deficiencies noted during the assessment of the security controls and to reduce or eliminate known vulnerabilities in the system; and
  2. Updates existing plan of action and milestones annually based on the findings from security controls assessments, security impact analyses, and continuous monitoring activities.

Revision History

Last Updated: February 21, 2025

Previous Versions:

  • June 29, 2023
  • May 31, 2022
  • March 25, 2021
  • September 16, 2019

Chief Information Security and Privacy Officer

Submit a Ticket