The organization develops a configuration management plan for the information system that addresses roles, responsibilities, and configuration management processes and procedures.
No STIG checks reference this CCI.