Video Description

This lesson covers authorization and discusses the steps in the security authorization package. Authorization is about building a strong assurance case, which consists of:

  1. Compiling and presenting evidence
  2. Basis for determining effectiveness of controls
  3. Product assessments
  4. System assessments
  5. Risk determination

The Security Authorization Package itself includes: 1. System Security Plan (SSP)

  1. Security Assessment Report
  2. Plan of Action and Milestones

Finally, the instructor discusses different types of authorizations and how they work.

Course Modules