Authorizing Official/Designating Representative

From CyberEdWiki
Jump to: navigation, search

The Authorizing Official/Designating Representative Work Role is from the Risk Management (RSK) NICE Framework Specialty Area.

Definition[edit]

A senior official or executive with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation (CNSSI 4009). [NIST SP 800-181]