 |
|
 |
|
|
|
|
DOE Chief Information Office
Cyber Security
Technical and Management
Requirements Documents
In keeping with its commitment to the goals and processes outlined in the
Cyber Security Program Revitalization Plan,
the Office of the Chief Information
Officer has issued the Technical and Management Requirements (TMRs)
to improve DOE's cyber security posture.
If you have any questions regarding the TMRs, please contact Jennifer G. Hamilton @ (865) 576-0681
|
Current |
Title |
Previous |
| TMR-0 | Cyber Security Program Foundation | None |
| TMR-1 | Management, Operational and Technical Controls | CS-1 |
| TMR-2 | Certification & Accreditation | CS-2 |
| TMR-3 | Risk Management | CS-3 |
| TMR-4 | Vulnerability Management | CS-4 |
| TMR-5 | Interconnected Systems Management | CS-5 |
| TMR-6 | Plan of Action and Milestones | CS-6 |
| TMR-7 | Contingency Planning | CS-7 |
| TMR-8 | Configuration Management | CS-8 |
| TMR-9 | Incident Management | CS-9 |
| TMR-10 | Clearing Sanitation | CS-11 |
| TMR-11 | Authenticator Management | CS-12 |
| TMR-12 | Wireless Devices and Information Systems | CS-13 |
| TMR-13 | Portable and Mobile Devices | CS-14 |
| TMR-14 | External Information Systems | CS-15 |
| TMR-18 | Peer to Peer Networking | CS-23 |
| TMR-19 | Remote Access | CS-24 |
| TMR-21 | Security Testing and Evaluation | CS-37 |
| TMR-22 | Protection of Sensitive Unclassified Information, Including Personally Identifiable Information | CS-38A |
The Cyber Security Guide listed below has not been replaced by a TMR and is active:
CS-18, Foreign National Guidance
Draft Directive(s) and correlating TMR(s)
Listed below are Draft Directives and the TMR(s) they will replace:
|
Draft DOE M 205.1-X |
TMR-1 |
| Draft DOE M 205.1-Y | TMR-0, TMR-2, TMR-6, and part of TMR-13 |
Note: Cyber Security Guides, and Technical and Management Requirements have potential to be developed into Directives, but depending on the outcome of the Draft Directive process, they may not become finalized formal Directives.
