A high-ranking officer responsible for authorization approvals, typically having theoretical knowledge but not directly involved in the process details. The Authorization official must be of a senior official, or rank able to accept the risk of an operational system on behalf of the organization.  The term DAA was replaced with the term Authorizing Official (AO), in 2012.

Applicability: Relevant in decision-making, system certifications, and risk acceptance and issues the Authority to Operate, Denial to Operate, Conditional Authority to Operate

URL: DoD Information Security Accreditation Process

DoDI 8510.01 DoD RMF

Chairman of the Joint Chief of Staff Instruction (CJCSI) 8410.02