Corrective Action Plan

Corrective Action Plan definition in Computer Security terms:

Acronym(s): CAP

Definition(s): Corrective actions for an issuer for removing or reducing deficiencies or risks identified by the Assessor during the assessment of issuer operations. The plan identifies actions that need to be performed in order to obtain or sustain authorization.
Source(s): NIST SP 800-79-2

Synonym(s): None


reference: CSRC Glossary