Develop security and privacy plans for the system that are reviewed and approved by the authorizing official or designated representative prior to plan implementation.
No STIG checks reference this CCI.