is an organizational official responsible for (1) designating a chief information security officer; (2) developing and maintaining cybersecurity policies, procedures, and control techniques to address all applicable requirements; (3) overseeing personnel with significant responsibilities for cybersecurity and ensuring that the personnel are adequately trained; (4) assisting senior organizational officials concerning their security responsibilities; and (5) coordinating with other senior officials.[2]
”
“
[is an] [a]gency official responsible for:
(i) Providing advice and other assistance to the head of the executive agency and other senior management personnel of the agency to ensure that information technology is acquired and information resources are managed in a manner that is consistent with laws, Executive Orders, directives, policies, regulations, and priorities established by the head of the agency;