Woodbury Technologies provides Information Security Services which align with and meet the Risk Management Framework (RMF) requirements recently adopted by the Department of Defense. The Department of Defense Instruction (DoDI) 8510.01: Risk Management Framework (RMF) for DoD Information Technology (IT) March 2014, which replaces the previous DoD Information Assurance Certification and Accreditation Process (DIACAP). We are experts in applying this framework.
This framework is a risk-based approach to security control selection and specifications that considers effectiveness, efficiency, and constraints due to applicable laws, directives, Executive Orders, policies, standards, or regulations. The activities related to managing organizational risk are paramount to an effective information security program and can be applied to both new and legacy systems within the context of the system development life cycle and the Federal Enterprise Architecture. Our current capabilities include:
- Information Network Protection
- Cybersecurity Assessment
- Cybersecurity Policy and Governance
- Risk Management Framework (RMF) Assessment & Authorization Support