Security Forms and Templates
The links for security and privacy forms and templates listed below have been divided by functional areas to better assist you in locating specific forms associated with security and/or privacy related activities that are described elsewhere in the NCI IT Security Website.
Risk planning and risk management
- FIPS-199
- e-Authentication Risk Analysis
- Privacy Impact Assessment (PIA)
- Security Assessment Plan (SAP/SCAP)
- Security Assessment Report (SAR)
- External System Security Plan (SSP) - Contractor Hosted
- Security Impact Analysis (SIA)
- NIH IT General Rules of Behavior (RoB)
Plan of action and milestones (POA&M)
- Plan of action and milestones (POA&M)
Configuration management
- Configuration Management Plan
- NIH Memorandum of Understanding (MOU)
- Interconnection Security Agreement (ISA)
- HHS/NIH Department Standard Warning Banner