Text of Recommendation | For those systems identified in which the Authorizing Official (AO) listed in the Authorization to Operate (ATO) has changed, NARA should follow the NARA Security Methodology for Certification and Accreditation (C&A) and Security Assessment in regard to requirements upon changes in authorizing officials. This is a separate activity from the ongoing authorization process. (new recommendation)
|
---|---|
Recommendation Number | 12 |
Recommendation Status | Closed |
Significant Recommendation | Yes |
Submitting OIG | |
---|---|
Linked Report |