πΌ CA-6 Authorization (L)(M)(H)
- Contextual name: πΌ CA-6 Authorization (L)(M)(H)
- ID:
/frameworks/fedramp-low-security-controls/ca/06 - Located in: πΌ Assessment, Authorization, and Monitoring
Descriptionβ
a. Assign a senior official as the authorizing official for the system;
b. Assign a senior official as the authorizing official for common controls available for inheritance by organizational systems;
c. Ensure that the authorizing official for the system, before commencing operations:
-
Accepts the use of common controls inherited by the system; and
-
Authorizes the system to operate;
d. Ensure that the authorizing official for common controls authorizes the use of those controls for inheritance by organizational systems;
e. Update the authorizations [FedRAMP Assignment: in accordance with OMB A-130 requirements or when a significant change occurs].
CA-6 Additional FedRAMP Requirements and Guidance:
(e) Guidance: Significant change is defined in NIST Special Publication 800-37 Revision 2, Appendix F and according to FedRAMP Significant Change Policies and Procedures. The service provider describes the types of changes to the information system or the environment of operations that would impact the risk posture. The types of changes are approved and accepted by the JAB/AO.
Similarβ
- Sections
/frameworks/nist-sp-800-53-r5/ca/06/frameworks/fedramp-high-security-controls/ca/06
- Internal
- ID:
dec-c-09bd2cc7
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ FedRAMP High Security Controls β πΌ CA-6 Authorization (L)(M)(H) | ||||
| πΌ NIST SP 800-53 Revision 5 β πΌ CA-6 Authorization | 2 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|