What is ICT Certification & Accreditation?
The Certification & Accreditation process is completed by defining the Statement of Applicability, performing a Risk Assessment, a Controls Validation Plan (CVP), a Controls Validation Audit (CVA) and then the System Security Certificate (SSC) itself.
On completion of the Certificate, Accreditation takes place with the system owner.
This accreditation is your ‘authority to operate’ or a security ‘warrant of fitness’