Risk Management Framework

Risk Management Framework (RMF) is the unified information security framework for the entire federal government that is replacing the legacy Certification and Accreditation (C&A) processes within federal government departments and agencies, the Department of Defense (DOD) and the Intelligence Community (IC).

RMF is an integral part of the implementation of FISMA, the Federal Information Security Management Act, and is based on publications of the National Institute of Standards and Technology (NIST) and the Committee on National Security Systems (CNSS).

Victory is dedicated to providing RMF consulting services to government organizations and their supporting contractors, vendors, and service providers. Also, Victory is a reseller and solution integrator of an Enterprise Governance, Risk and Compliance software solution, Rsam, which Victory is authorized to integrate and implement.  Rsam is an industry award winning and leading solution in governance, risk and compliance (GRC) management that has enabled government agencies to effectively identify, assess, manage and mitigate risks, while providing enterprise-wide visibility, oversight and assurance.  The Rsam solution and services is on Victory’s SEWP IV & V contract vehicles. 

Rsam’s modular solutions allow for a sensible, phased approach to GRC. Intuitive solution templates enable rapid deployment for Assessment, Audit Management, Compliance Management, Enterprise Risk, Incident Management, Issue & Remediation Tracking, Policy Management, Exceptions Management, Threat & Vulnerability Management and Vendor Risk Management. Customers can also use the four components of the Rsam Platform to develop their own unique solutions for home-grown’ use cases quickly and efficiently using the Rsam’s rapid configuration and deployment capabilities.