Security Categorization

class

Management

family

Risk Assessment

number

RA-2

priority

P1

impact

LOW_MODERATE_HIGH

The organization: Categorizes information and the information system in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance; Documents the security categorization results (including supporting rationale) in the security plan for the information system; and Ensures the security categorization decision is reviewed and approved by the authorizing official or authorizing official designated representative.

Comments