Headquarters Marine Corps
Risk Management Framework (RMF)


To provide enterprise-wide Risk Management Framework (RMF) support to the USMC Security Controls Assessor (SCA) and Authorizing Official (AO) for USMC Information Systems, enclaves, networks and applications.


About Us

RMF functions include but are not limited to:

  • Review accreditation documentation for information systems, enclaves and networks.

  • Analyze risks and provide recommendation to SCA.

  • Provide recommendations and letters for AO decision.


Risk Management Framework (RMF)

Please note, the Marine Corps has fully transitioned to RMF.


Marine Corps Compliance and Authorization Support Tool (MCCAST)

MCCAST is the tool of choice used by the Marine Corps in support of the Assessment and Authorization process. Go here to get information on accessing this online tool and accounts. 

Points of Contact

  • Compliance Branch / Cybersecurity

    Headquarters Marine Corps Cybersecurity Division

    Pentagon, Room 1D247
    Washington, DC 20350-3000



Last Update: 31 March 2024

Headquarters Marine Corps