Definition: A Security Plan is a comprehensive outline of how an organization addresses and implements information assurance. The specification of the steps, policies and practices that are to be followed to protect information need would normally be adopted as official policies of the organization. Such policies include a full asset inventory, an outline of required best practices, a common frame of reference and information assurance baselines that need to be maintained. The approach assures that those assets which are deemed to be critical to operations are kept safe.
Its Relevance: Individuals and businesses must have practices and procedures to follow to protect its information assets and infrastructure in today's threat environment. Without a guide for guaranteeing the confidentiality, integrity and availability of critical information your personal information and business continuity is at serious risk.