What must be coordinated with the appropriate authorizing official when submitting a waiver request?

When submitting a waiver request, it is essential to coordinate with the appropriate authorizing official regarding the affected information system within the accredited area. This is because the authorizing official needs to understand how the waiver impacts the security posture and compliance of the specific information system under their purview.

The affected information system is critical to the assessment of risks and the implications of granting a waiver. It helps ensure that any potential vulnerabilities introduced by granting the waiver can be adequately managed and mitigated. This coordination is vital to ensure that the waiver does not compromise the system's integrity, confidentiality, or availability, which are fundamental principles of cybersecurity.

Understanding the specifics of the information system also aids the authorizing official in making an informed decision about the waiver request and any necessary compensatory controls that may need to be implemented to address security concerns arising from the waiver.