Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Glossary

A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z  |  Symbols

Senior Agency Information Security Officer

Acronym(s):
SAISO
Definition(s):

  Official responsible for carrying out the Chief Information Officer responsibilities under FISMA and serving as the Chief Information Officer’s primary liaison to the agency’s authorizing officials, information system owners, and information system security officers.
Source(s): FIPS 200 (44 U.S.C., Sec. 3544)
NIST SP 800-18 Rev. 1 (44 U.S.C., Sec. 3544)
NIST SP 800-60 Vol 1 Rev. 1 (44 U.S.C., Sec. 3544)

  Official responsible for carrying out the Chief Information Officer responsibilities under FISMA and serving as the Chief Information Officer’s primary liaison to the agency’s authorizing officials, information system owners, and information system security officers.
Note: Organizations subordinate to federal agencies may use the term Senior Information Security Officer or Chief Information Security Officer to denote individuals filling positions with similar responsibilities to Senior Agency Information Security Officers.

Source(s): NIST SP 800-39 (44 U.S.C., Sec. 3544)
NIST SP 800-53 Rev. 4 (44 U.S.C., Sec. 3544)

  Official responsible for carrying out the Chief Information Officer responsibilities under the Federal Information Security Management Act (FISMA) and serving as the Chief Information Officer’s primary liaison to the agency’s authorizing officials, information system owners, and information systems security officers.
[Note 1: With respect to SecCM, a Senior Agency Information Security Officer is an individual that provides organization-wide procedures and/or templates for SecCM, manages or participates in the Configuration Control Board, and/or provides technical staff for security impact analyses.
Note 2: Organizations subordinate to federal agencies may use the term Senior Information Security Officer or Chief Information Security Officer to denote individuals filling positions with similar responsibilities to Senior Agency Information Security Officers.].

Source(s): NIST SP 800-128 (44 U.S.C., Sec. 3544)

  Official responsible for carrying out the Chief Information Officer responsibilities under FISMA and serving as the Chief Information Officer’s primary liaison to the agency’s authorizing officials, information system owners, and information system security officers.
Note: Organizations subordinate to federal agencies may use the term Senior Information Security Officer or Chief Information Security Officer to denote individuals filling positions with similar responsibilities to Senior Agency Information Security Officers.

Source(s): NIST SP 800-30 (44 U.S.C., Sec. 3544)

  Official responsible for carrying out the Chief Information Officer responsibilities under FISMA and serving as the Chief Information Officer’s primary liaison to the agency’s authorizing officials, information system owners, and information system security officers.
[Note: Organizations subordinate to federal agencies may use the term Senior Information Security Officer or Chief Information Security Officer to denote individuals filling positions with similar responsibilities to Senior Agency Information Security Officers.].

Source(s): NIST SP 800-53A Rev. 4 (44 U.S.C., Sec. 3544)

  Official responsible for carrying out the chief information officer (CIO) responsibilities under the Federal Information Security Management Act (FISMA) and serving as the CIO’s primary liaison to the agency’s authorizing officials, information system owners, and information systems security officers.
Note: Also known as senior information security officer (SISO) or chief information security officer (CISO).

Source(s): CNSSI 4009-2015 (Adapted from FIPS 200, Adapted from FIPS 200)

Synonym(s):
Senior Information Security Officer
  See Senior Agency Information Security Officer.
Source(s): NIST SP 800-37 Rev. 1   See senior agency information security officer (SAISO).
Source(s): CNSSI 4009-2015
Chief Information Security Officer
  See senior agency information security officer (SAISO).
Source(s): CNSSI 4009-2015
See Also:

None