Video Description

This lesson covers authorization and discusses the steps in the security authorization package. Authorization is about building a strong assurance case, which consists of:

  1. Compiling and presenting evidence

  2. Basis for determining effectiveness of controls

  3. Product assessments

  4. System assessments

  5. Risk determination

The Security Authorization Package itself includes: 1. System Security Plan (SSP)

  1. Security Assessment Report

  2. Plan of Action and Milestones

Finally, the instructor discusses different types of authorizations and how they work.

Course Modules