Risk Management Framework (RMF) Assessment and Authorization (A&A)
(Formerly known to the government community as DIACAP C&A.)
The DoD Information Assurance Certification and Accreditation Process (DIACAP) was a United States Department of Defense (DoD) process and was a means to ensure that companies and organizations apply risk management to information systems (IS). The certification and accreditation (C&A) of a DoD IS maintains the information assurance (IA) posture throughout the system’s life cycle. However, DIACAP is no longer the law of the land when it comes to authorizing IS onto a DoD environment. A new process named DoD RMF, for Risk Management Framework, has been in effect since late 2013.
Risk Management Framework (RMF) is the unified information security framework for the entire federal government that is replacing the legacy Certification and Accreditation (C&A) processes within federal government departments and agencies, the Department of Defense (DOD) and the Intelligence Community (IC). DoD officially began its transition from the legacy DIACAP process to the new “RMF for DoD IT” process Assessment and Authorization (A&A).
MP Dezgn offers services to Solutions Manufacturers who need to acquire the Authorization to Operate (ATO), IATT, or IATO on the DoD network. Whether it is a full package submission, data entry of the information gathered, assessing risk and vulnerabilities, or advising the best strategic way to jump start the process, MP Dezgn is your partner from beginning to end of this intricate but necessary requirement. Contact us for more information or to begin a quote.