RSK Risk Management

Oversees, evaluates, and supports the documentation, validation, assessment, and authorization processes necessary to assure that existing and new information technology (IT) systems meet the organization's cybersecurity and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives.

Related Work Roles 2

Code Name Knowledge Skills Abilities Tasks
SP-RSK-001 [611] Authorizing Official/Designating Representative 39 2 11 4
SP-RSK-002 [612] Security Control Assessor 53 68 49 21