Facility-Related Control System Authorization Framework Risk Management Framework (RMF) Self-Assessment Tool (R-SAT)

Abstract

The objective of this project was to provide a prescriptive, step-by-step method to facilitate and accelerate Risk Management Framework (RMF) Self-Assessments through automation. The RMF Self-Assessment Tool (R-SAT) is an Excel based tool that was designed to streamline the process for obtaining an Authority to Operate for network-enabled Facility-Related Control Systems (FRCS) by providing focused, step-by-step guidance and outputs supporting RMF Steps 1-3. RSAT works in conjunction with the Enterprise Mission Assurance Support Service (eMASS) government-owned application. RSATs customized Visual Basic macros apply user inputs against a series of condition-specific integrated databases to produce output forms for additional tailoring and subsequent eMASS upload. R-SAT was demonstrated and circulated to FRCS stakeholders. The findings and performance assessment from the demonstration and outreach provide evidence that R-SAT is a useful tool that will yield a time savings to FRCS system owners that must perform RMF Self Assessments.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Dec 31, 2019
Accession Number
AD1135024

Entities

People

  • Aura L. Keating
  • William Horner

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Application Software
  • Business Administration
  • Computer Networks
  • Computer Programming
  • Computer Programs
  • Computers
  • Control Systems
  • Cybersecurity
  • Employment
  • Information Processing
  • Information Systems
  • Management Personnel
  • National Security
  • Network Protocols
  • Personnel Management
  • Security Personnel
  • Spreadsheet Software

Readers

  • Database Systems and Applications
  • Enterprise Information Systems Architecture and Joint Command Capability Interoperability Support.
  • Government and Public Administration Law.