What is Assessment and Authorization? Assessment and Authorization is defined by the Department of Interior (DOI) as a “…comprehensive assessment and/or evaluation of an information system policies, technical/non-technical security components, documentation, supplemental safeguards, policies, and vulnerabilities.”1 All systems and applications supporting Federal government agencies must follow National Institute of Standards and Technology (NIST) Risk Management […]