RSK Risk Management
Oversees, evaluates, and supports the documentation, validation, assessment, and authorization processes necessary to assure that existing and new information technology (IT) systems meet the organization's cybersecurity and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives.
Related Work Roles 2
Code | Name | Knowledge | Skills | Abilities | Tasks |
---|---|---|---|---|---|
SP-RSK-001 [611] | Authorizing Official/Designating Representative | 39 | 2 | 11 | 4 |
SP-RSK-002 [612] | Security Control Assessor | 53 | 68 | 49 | 21 |