Development of Homeland Security Presidential Directive (HSPD) - 7 Critical Infrastructure Protection Plans to Protect Federal Critical Infrastructures and Key Resources [open pdf - 98KB]
"On December 17th, 2003, the President signed HSPD-7 [Homeland Security Presidential Directive], 'Critical Infrastructure Identification, Prioritization and Protection' (Attachment A). This HSPD supersedes Presidential Decision Directive/NSC-63 [National Security Council] of May 22, 1998, 'Critical Infrastructure Protection', and establishes a national policy for Federal departments and agencies to identify and prioritize United States critical infrastructure and key resources and to protect them from terrorist attacks. HSPD-7 instructed Federal departments and agencies (agencies) to prepare plans for protecting physical and cyber critical infrastructure and key resources (CI/KR), owned or operated, including leased facilities by July 31, 2004. OMB [Office of Management and Budget] has been working with agencies on this requirement and agency Chief Information Officers received official distribution of draft guidance on April 27, 2004. This memorandum, developed in consultation with the Homeland Security Council (HSC) and the Department of Homeland Security (DHS), includes the required format for agencies to use when submitting internal critical infrastructure protection (CIP) plans. Pursuant to the guidance provided herein, these plans must address identification, prioritization, protection, and contingency planning, including the recovery and reconstitution of essential capabilities. In particular, planning must include protection priorities, the agency's ability to ensure continuity of business operations during a physical or cyber attack, and, where current capabilities are lacking, plans of action and milestones to achieve the necessary level of performance."
M-04-15; Office of Management and Budget Memorandum M-04-15
Office of Management and Budget: http://www.whitehouse.gov/omb