• Online, Instructor-Led

Cleared contractor companies are required to have Authorization to Operate (ATO) for classified information systems on their premises, under the purview of the Defense Counterintelligence and Security Agency (DCSA). DCSA employs a unique “flavor” of the Risk Management Framework (RMF). RMF Supplement for DCSA Cleared Contractors is a one-day session in which we provide instruction on the unique features of RMF as practiced in the DCSA cleared contractor community. Topics include: Introduction to DCSA Roles and Responsibilities Types of Systems (SUSA, MUSA, P2P, etc.) RMF Life Cycle (Prepare, Categorize, Select, Implement, Assess, Authorize, Monitor) Documentation and artifacts Type Authorization and other special circumstances National Industrial Security Program (NISP) eMASS Support tools RMF Supplement for DCSA Cleared Contractors is a one-day session in which we provide instruction on the unique features of RMF as practiced in the DCSA cleared contractor community. Policies Covered: NIST SP 800-37 NIST SP 800-53 NIST SP 800-137 NIST SP 800-60 DoDI 8500.01 DoDI 8510.01 CNSSI 1253 NISPOM DAAPM

Learning Objectives

To provide students the necessary information to obtain an authority to operate for classified systems under Defense Counter Intelligence Security Agency (DCSA).

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Specialty Areas

  • Risk Management

Specialty Areas have been removed from the NICE Framework. With the recent release of the new NICE Framework data, updates to courses are underway. Until this course can be updated, this historical information is provided to give better context as to how it can help you with your cybersecurity goals.

Feedback

If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.