• Online, Instructor-Led
Course Description

Students develop the competencies to utilize the NIST-RMF, Steps 4-6: Implementation, Authorization and Monitoring, and complete the associated analysis and documentation, as required by NIST/FedRAMP/CMMC Frameworks

Learning Objectives

Categorize information system based on NIST RMF guidelines|Select security controls based on NIST RMF and FedRAMP guidelines|Write a system security control in alignment with NIST RMF and FedRAMP guidelines|Develop a compliant System Security Plan (SSP) using NIST RMF and FedRAMP|Analyze and document inherited controls to ensure cloud security posture is maintained|Differentiate and document hybrid and system controls in alignment with NIST RMF and FedRAMP|Develop Information System Continuous Monitoring (ISCM) strategy based on NIST RMF best practices|Prepare system for security risk assessment|Demonstrate highly developed critical thinking skills and a deepened understanding of risk management issues|Understand how to research issues of importance to the organization as well as possible recommendations to address risk management processes|Collect, interpret and analyze existing research and/or resources, and use in risk management processes

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.