Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Authorizing and Monitoring System Controls within the RMF
Authorizing and monitoring security controls provides an understanding of security posture and provides an indication as to whether or not cybersecurity controls are operating as intended. This course provides learners with an understanding of the Authorization and Monitoring steps of the NIST SP 800-37 Rev. 2 Risk Management Framework.
Course Overview
Learning Objectives
On successful completion of this course, learners should have the knowledge and skills required to:
- Provide organizational accountability by requiring a senior management official to determine if the security and privacy risk to operations, assets and individuals are acceptable
- Report authorization decisions, significant vulnerabilities, and risks to organizational officials
- Monitor the system and associated controls on an ongoing basis
- Document changes to the system and environment of operation
- Conduct risk assessments and impact analysis
- Report the security and privacy posture of the system
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Work Roles
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.