Chapter 8

System Authorization Case Study

The purpose of this chapter is to provide an overview of how a major U.S. government department set about establishing and implementing an effective system authorization program. This case study illustrates the system authorization concepts and principles described in this book. Because I was contracted by the department to serve as its on-site system authorization program manager and oversaw its fiscal year 2003 and 2004 system authorization efforts as certification and accreditation project manager, I have an ideal perspective from which to describe the events recorded in this case study. In that capacity, I was in a position to assess the advantages and disadvantages of courses of action taken, the ...

Get Official (ISC)2 Guide to the CAP CBK, 2nd Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.