A senior (federal) official or executive with the authority to formally assume responsibility
for operating an information system at an acceptable level of risk to organizational
operations (including mission, functions, image, or reputation), organizational assets,
individuals, other organizations, and the Nation.
<xsd:element name="DelegatedAuthorizingOfficial" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">A senior (federal) official or executive with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation.</p><p xmlns="http://www.w3.org/1999/xhtml" ism:ownerProducer="USA" ism:classification="U">Source: CNSSI-4009 (Authorizing Official)</p></xsd:documentation></xsd:annotation></xsd:element>
Schema location
BOE.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
Element boe:KeyRolesType / boe:DelegatedAuthorizingOfficialRepresentative
Namespace
urn:us:gov:ic:boe
Annotations
An organizational official acting on behalf of an authorizing official in carrying
out and coordinating the required activities associated with security authorization.
Source: CNSSI-4009 (authorizing official designated representative)
<xsd:element name="DelegatedAuthorizingOfficialRepresentative" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">An organizational official acting on behalf of an authorizing official in carrying out and coordinating the required activities associated with security authorization.</p><p xmlns="http://www.w3.org/1999/xhtml" ism:ownerProducer="USA" ism:classification="U">Source: CNSSI-4009 (authorizing official designated representative)</p></xsd:documentation></xsd:annotation></xsd:element>
Schema location
BOE.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
<xsd:element name="SystemOwner" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Official responsible for the overall procurement, development, integration, modification, or operation and maintenance of an information system.</p><p xmlns="http://www.w3.org/1999/xhtml" ism:ownerProducer="USA" ism:classification="U">Source: CNSSI-4009 (information system owner (or program manager))</p></xsd:documentation></xsd:annotation></xsd:element>
Schema location
BOE.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
<xsd:element name="SystemManagement" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Official responsible for the system day-to-day management (program manager), if different from the system owner.</p><p xmlns="http://www.w3.org/1999/xhtml" ism:ownerProducer="USA" ism:classification="U">Source: CNSSI-4009 (information system owner (or program manager))</p></xsd:documentation></xsd:annotation></xsd:element>
Schema location
BOE.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
Individual assigned responsibility by the senior agency information security officer,
authorizing official, management official, or information system owner for maintaining
the appropriate operational security posture for an information system or program.
Source: CNSSI-4009 (information system security officer (ISSO))
<xsd:element name="SystemSecurityOfficer" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Individual assigned responsibility by the senior agency information security officer, authorizing official, management official, or information system owner for maintaining the appropriate operational security posture for an information system or program.</p><p xmlns="http://www.w3.org/1999/xhtml" ism:ownerProducer="USA" ism:classification="U">Source: CNSSI-4009 (information system security officer (ISSO))</p></xsd:documentation></xsd:annotation></xsd:element>
Schema location
BOE.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
<xsd:element name="TechnicalLead" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Individual responsible for overseeing the technical aspects of the system.</p></xsd:documentation></xsd:annotation></xsd:element>
Schema location
BOE.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
<xsd:element name="Other" type="boe:PersonTypeWithRole" minOccurs="0" maxOccurs="unbounded"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">A key person not fitting one of the predefined roles/titles for which a role/title must be specified.</p></xsd:documentation></xsd:annotation></xsd:element>
Schema location
BOE.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
<xsd:complexType name="KeyRolesType"><xsd:sequence minOccurs="1" maxOccurs="1"><xsd:element name="DelegatedAuthorizingOfficial" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">A senior (federal) official or executive with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation.</p><p xmlns="http://www.w3.org/1999/xhtml" ism:ownerProducer="USA" ism:classification="U">Source: CNSSI-4009 (Authorizing Official)</p></xsd:documentation></xsd:annotation></xsd:element><xsd:element name="DelegatedAuthorizingOfficialRepresentative" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">An organizational official acting on behalf of an authorizing official in carrying out and coordinating the required activities associated with security authorization.</p><p xmlns="http://www.w3.org/1999/xhtml" ism:ownerProducer="USA" ism:classification="U">Source: CNSSI-4009 (authorizing official designated representative)</p></xsd:documentation></xsd:annotation></xsd:element><xsd:element name="SecurityControlAssessor" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The individual, group, or organization responsible for conducting a security control assessment.</p><p xmlns="http://www.w3.org/1999/xhtml" ism:ownerProducer="USA" ism:classification="U">Source: CNSSI-4009 (security control assessor (SCA))</p></xsd:documentation></xsd:annotation></xsd:element><xsd:element name="SystemOwner" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Official responsible for the overall procurement, development, integration, modification, or operation and maintenance of an information system.</p><p xmlns="http://www.w3.org/1999/xhtml" ism:ownerProducer="USA" ism:classification="U">Source: CNSSI-4009 (information system owner (or program manager))</p></xsd:documentation></xsd:annotation></xsd:element><xsd:element name="SystemManagement" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Official responsible for the system day-to-day management (program manager), if different from the system owner.</p><p xmlns="http://www.w3.org/1999/xhtml" ism:ownerProducer="USA" ism:classification="U">Source: CNSSI-4009 (information system owner (or program manager))</p></xsd:documentation></xsd:annotation></xsd:element><xsd:element name="SystemSecurityOfficer" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Individual assigned responsibility by the senior agency information security officer, authorizing official, management official, or information system owner for maintaining the appropriate operational security posture for an information system or program.</p><p xmlns="http://www.w3.org/1999/xhtml" ism:ownerProducer="USA" ism:classification="U">Source: CNSSI-4009 (information system security officer (ISSO))</p></xsd:documentation></xsd:annotation></xsd:element><xsd:element name="TechnicalLead" type="boe:PersonType" minOccurs="0"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Individual responsible for overseeing the technical aspects of the system.</p></xsd:documentation></xsd:annotation></xsd:element><xsd:element name="Other" type="boe:PersonTypeWithRole" minOccurs="0" maxOccurs="unbounded"><xsd:annotation><xsd:documentation><p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">A key person not fitting one of the predefined roles/titles for which a role/title must be specified.</p></xsd:documentation></xsd:annotation></xsd:element></xsd:sequence><xsd:attributeGroup ref="ism:SecurityAttributesGroup"/></xsd:complexType>
Schema location
BOE.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
This document has been approved for Public Release by the Office of the Director of National Intelligence. See Distribution Notice for details.
Click Here