Categorize Tasks - morgan-hanrahan/Tech-Journal GitHub Wiki

Provides a summary of tasks and expected outcomes for the RMF Categorize step

1. System Description - The system's attributes are listed and recorded.

2. Security Categorization -

   • The system has been classified in terms of security, and this includes the data that it processes, which is represented by the information categories that the organization has specified.
   • The security, privacy, and SCRM strategies include documentation of the security classification results.
   • The enterprise architecture and the dedication to preserving corporate missions, business functions, and mission/business processes are compatible with the security categorization results.
   • Results of security categorization show how the company manages risk.

3. Security Categorization Review and Approval - Senior organizational executives assess the security classification results and approve the categorization decision.