An___________________________ is one who has been assigned t…

An___________________________ is one who has been assigned the authority and responsibility for ensuring that information and related systems are protected from creation through destruction. This includes making decisions on information classification, safeguards, and controls. An __________________________________ is the one responsible for implementing, maintaining, and monitoring the safeguards based on decisions made by information . 

__________________ codifies the Department of Homeland Secur…

__________________ codifies the Department of Homeland Security’s role in administering the implementation of information security policies for federal Executive Branch civilian agencies, overseeing agencies’ compliance with those policies, and assisting OMB in developing those policies.

_____________________ implies one of four actions: Reduci…

_____________________ implies one of four actions: Reducing the risk by implementing one or more countermeasures  Sharing the risk with another entity  Transferring the risk to another entity Modifying or ceasing the risk-causing activity, or a combination thereof