The industry is moving toward a modified manadatory access control model, where role based access to resources will be more finely contolled. What would a security plan using this strategy look like?

Mandatory Access Control (MAC) models (BIBA, Bell-LaPadula, Clark-Wilson) apply different rules to restrict user access beyond the scope of their authorization. They help avoid the poisoning of trusted information with less trusted inputs, the elevation of untrusted information to trustworthy status, and breach of confidentiality through aggregation of related information. This template has adapted the format used by the Department of Defense for classified information systems.

Download: Security Plan Template