Which of the following is the MAIN reason that system re-certification and re-accreditation are
needed?
A.
To assist data owners in making future sensitivity and criticality determinations
B.
To assure the software development team that all security issues have been addressed
C.
To verify that security protection remains acceptable to the organizational security policy
D.
To help the security team accept or reject new systems for implementation and production