How Can We Help?
Formal document that provides an overview of the security requirements for an organization-wide information security program and describes the program management controls and common controls in place or planned for meeting those requirements.
SOURCE: SP 800-37; SP 800-53; SP 800-53A
