- August 8, 2022 - August 12, 2022
RMF for Federal Agencies Fundamentals (One Day) provides an overview of information security and risk management and proceeds to a high-level view of RMF. Discussion is centered on RMF policies, roles and responsibilities, along with key publications from the National Institute of Standards and Technology (NIST) and the Committee on National Security Systems (CNSS). The class includes high-level discussion of the RMF “life cycle”, including security authorization (aka. certification and accreditation), along with the RMF documentation package and NIST security controls.
RMF for Federal Agencies In-Depth (Three Days) expands on these topics at a level of detail that enables practitioners to immediately apply the training to their daily work. Each student will gain an in-depth knowledge of the relevant DoD, NIST and CNSS publications along with the practical guidance needed to implement them in the work environment. NIST Special Publication (SP) 800-53 Security Controls, along with corresponding assessment procedures, are covered in detail, as are CNSS Instruction 1253 “enhancements”. Specific attention is paid to the process of transition from DIACAP to RMF, as well as the application of the eMASS tool to various aspects of the RMF life cycle. “Class participation” exercises and collaboration reinforce key concepts. RMF for Federal Agencies Fundamentals is recommended as a “prerequisite” to RMF for Federal Agencies In-Depth.
CAP Exam Preparation is a one-day supplemental training program that focuses on solidifying (ISC)² CAP exam concepts covered in the RMF for DoD IT (or RMF for Federal Agencies) Training Program. It includes a review of the CAP Common Body of Knowledge (CBK). Practical “how to” guidance and sample questions are provided to enhance the students’ readiness.
Backed by (ISC)2, CAP credentialing aligns with the Risk Management Framework (RMF). The CAP recognizes knowledge, skills and abilities to authorize and maintain information systems within RMF. It demonstrates the ability to formalize processes to assess risk and establish security documentation.
The CAP is the only certification under the DoD8570 mandate that aligns with each RMF step. It shows employers you have the advanced technical skills and knowledge to authorize and maintain information systems within the RMF using best practices, policies and procedures established by the cybersecurity experts at (ISC)². CAP is compliant with ISO 17024 standards and approved by the US DoD to meet directive 8140/8570.01-M requirements.
The broad spectrum of topics included in the CAP Common Body of Knowledge (CBK) ensure its relevancy
across all disciplines in the field of information security. Successful candidates are competent in the following
• Information Security Risk Management Program
• Categorization of Information Systems (IS)
• Selection of Security Controls
• Implementation of Security Controls
• Assessment of Security Controls
• Authorization of Information Systems (IS)
• Continuous Monitoring
Discount pricing is available when this class is combined with RMF for Federal Agencies. Please contact us for details.
We have an assortment of supplemental classes that can be bundled with the RMF for Federal Agencies to enhance your RMF training experience. By bundling you can receive a considerable discount on the supplemental classes.
- Class begins at 8:00 AM each day and ends at approximately 4:30 PM
- Thursday class normally ends at least one hour early
- Suggested dress code: Business Casual
Venue: Online Personal Classroom™
Our Online Personal Classroom Training™ is conducted via AdobeConnect®. You can test your computer for compatibility with Adobe Connect here.