This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Talk:Industry:Project Review/NIST SP 800-37r1 FPD Appendix D"

From OWASP

Jump to: navigation, search

Revision as of 02:35, 16 December 2009

1 D.1 HEAD OF AGENCY (CHIEF EXECUTIVE OFFICER)
2 D.2 RISK EXECUTIVE (FUNCTION)
3 D.3 CHIEF INFORMATION OFFICER
4 D.4 INFORMATION OWNER/STEWARD
5 D.5 SENIOR INFORMATION SECURITY OFFICER
6 D.6 AUTHORIZING OFFICIAL
7 D.7 AUTHORIZING OFFICIAL DESIGNATED REPRESENTATIVE
8 D.8 COMMON CONTROL PROVIDER
9 D.9 INFORMATION SYSTEM OWNER
10 D.10 INFORMATION SYSTEM SECURITY MANAGER/OFFICER
11 D.11 INFORMATION SECURITY ARCHITECT
12 D.12 INFORMATION SYSTEM SECURITY ENGINEER
13 D.13 SECURITY CONTROL ASSESSOR
14 Footnotes

APPENDIX D

ROLES AND RESPONSIBILITIES

KEY PARTICIPANTS IN THE RISK MANAGEMENT PROCESS

D.1 HEAD OF AGENCY (CHIEF EXECUTIVE OFFICER)

D.2 RISK EXECUTIVE (FUNCTION)

D.3 CHIEF INFORMATION OFFICER

D.4 INFORMATION OWNER/STEWARD

D.5 SENIOR INFORMATION SECURITY OFFICER

D.6 AUTHORIZING OFFICIAL

D.7 AUTHORIZING OFFICIAL DESIGNATED REPRESENTATIVE

D.8 COMMON CONTROL PROVIDER

D.9 INFORMATION SYSTEM OWNER

D.10 INFORMATION SYSTEM SECURITY MANAGER/OFFICER

D.11 INFORMATION SECURITY ARCHITECT

D.12 INFORMATION SYSTEM SECURITY ENGINEER

D.13 SECURITY CONTROL ASSESSOR

Footnotes

Retrieved from "https://wiki.owasp.org/index.php?title=Talk:Industry:Project_Review/NIST_SP_800-37r1_FPD_Appendix_D&oldid=75174"

GIC-NISTSP80037r1FPD