An organizational official responsible for the development, implementation, assessment, and monitoring of common controls (i.e., security controls inherited by information systems).
Source(s):
CNSSI 4009-2015
(NIST SP 800-37 Rev. 1, NIST SP 800-53 Rev. 4)
NIST SP 800-137 under Common Control Provider
(NISTIR 7298)
NIST SP 800-30 Rev. 1 under Common Control Provider
(CNSSI 4009)
NIST SP 800-37 Rev. 1 under Common Control Provider
NIST SP 800-39 under Common Control Provider
(NIST SP 800-37)
NISTIR 8170 under Common Control Provider
(NIST SP 800-37)
An organizational official responsible for the development, implementation, assessment, and monitoring of common controls (i.e., security controls inheritable by information systems).
Source(s):
NIST SP 800-53 Rev. 4 under Common Control Provider
(NIST SP 800-37)
An organizational official responsible for the development, implementation, assessment, and monitoring of common controls (i.e., security controls and privacy controls inherited by information systems).
Source(s):
NIST SP 800-53A Rev. 4 under Common Control Provider
(NIST SP 800-37 - Adapted)
An organizational official responsible for the development, implementation, assessment, and monitoring of common controls (i.e., controls inheritable by organizational systems).
Source(s):
NIST SP 800-37 Rev. 2