• Online, Self-Paced

The Migration and Security Strategies for FedRAMP Cloud Computing course is designed to introduce students to the structure and employment of cloud computing using the Federal Risk and Authorization Management Program, or FedRAMP. Topics include cloud computing architecture, FedRAMP structure and roles, FedRAMP security implementations, and FedRAMP-approved cloud deployment options.

Learning Objectives

  • Describe the three major deployment models for cloud computing.
  • Discuss cybersecurity issues related to cloud computing.
  • Explain the authority, structure, and roles of major parties that make up FedRAMP.
  • Explain how Cloud Service Providers (CSPs) and FedRAMP processes work to meet federal security requirements.
  • Describe how the FedRAMP framework of “do once, use many times” allows government agencies to reuse previously-approved security documents and structures to simplify data deployments to the cloud.
  • Describe how FedRAMP processes enable a second agency to use a previously approved CSP.
  • Identify how FedRAMP processes map to and are designed to assure compliance with applicable standards outlined by the National Institute for Standards and Technology (NIST) in its Special Publications 800 series of documents.

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Specialty Areas

  • Risk Management
  • Systems Architecture
  • Systems Requirements Planning
  • Cybersecurity Management
  • Incident Response

Specialty Areas have been removed from the NICE Framework. With the recent release of the new NICE Framework data, updates to courses are underway. Until this course can be updated, this historical information is provided to give better context as to how it can help you with your cybersecurity goals.

Feedback

If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.