Who is responsible for the protection of information when it is shared with or provided to other organizations?
A. Systems owner
B. Authorizing Official (AO)
C. Information owner
D. Security officer
Who is responsible for the protection of information when it is shared with or provided to other organizations?
A. Systems owner
B. Authorizing Official (AO)
C. Information owner
D. Security officer
At the end, the information owner is responsible for the information. Its a security concern to provide information to a external entity, but it that should not change the fact who is responsible.
I think it should be D.