STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 5 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← All Controls

PL-8

PlanningRev 5

Security and Privacy Architectures

CCI Identifiers (18)

CCI-003072Develop security architectures for the system.CCI-003073Develop security architectures for the system that describes the requirements and approach to be taken for protecting the confidentiality, integrity, and availability of organizational information.CCI-003074Develop security architectures for the system that describe how the architectures are integrated into and support the enterprise architecture.CCI-003075Develop security architectures for the system that describe any assumptions about, and dependencies on, external systems and services.CCI-003076Review and update the architectures in accordance with organization-defined frequency to reflect updates in the enterprise architecture.CCI-003077Defines the frequency with which to review and update the system architecture.CCI-003078Reflect planned security architecture changes in the security plans.CCI-003079Reflect planned security architecture changes in the security Concept of Operations (CONOPS).CCI-003080Reflect planned security architecture changes in the security organizational procurements and acquisitions.CCI-004292Develop privacy architectures for the system.CCI-004293Develop privacy architectures for the system that describes the requirements and approach to be taken for protecting the confidentiality, integrity, and availability of organizational information.CCI-004294Develop security architectures for the system that describe the requirements and approach to be taken for processing personally identifiable information to minimize privacy risk to individuals.CCI-004295Develop privacy architectures for the system that describe the requirements and approach to be taken for processing personally identifiable information to minimize privacy risk to individuals.CCI-004296Develop privacy architectures for the system that describe how the architectures are integrated into and support the enterprise architecture.CCI-004297Develop privacy architectures for the system that describe any assumptions about, and dependencies on, external systems and services.CCI-004298Reflect planned privacy architecture changes in the privacy plans.CCI-004299Reflect planned privacy architecture changes in the privacy Concept of Operations (CONOPS).CCI-004300Reflect planned privacy architecture changes in the privacy organizational procurements and acquisitions.

Linked STIG Checks (0)

No STIG checks reference this control.