Risk Management Framework for DoD & Intelligence Communities Information Technology Training
|Commitment||4 days, 7-8 hours a day.|
|How To Pass||Pass all graded assignments to complete the course.|
|User Ratings||Average User Rating 4.8 See what learners said|
|Delivery Options||Instructor-Led Onsite, Online, and Classroom Live|
Risk Management Framework for DoD & Intelligence Communities Information Technology Training course equips the student with an overview of the system authorization process (also known as C&A) and the Risk Management Framework (RMF) for National Security Systems (NSS).
In addition to the classroom instruction, the student will also participate in several scenario-based hands-on exercises in the implementation of the RMF to provide a clear knowledge bridge to the revised system authorization processes for those currently working with C&A for National Security Systems or for those who have limited or no C&A experience. These exercises will include the development of Systems Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms) for a NSS.
This Risk Management Framework for DoD & Intelligence Communities Information Technology Training course meets the requirements of National Security Directive 42 (NSD-42), which outlines the roles and responsibilities for securing NSSs. The CNSS In-Depth Course will address the Federal and Intelligence Community requirements, including NIST SP 800-37, NIST SP 800-39, CNSS 1199 and CNSS 1253.
- We can adapt this training course to your group’s background and work requirements at little to no added cost.
- If you are familiar with some aspects of this training course, we can omit or shorten their discussion.
- We can adjust the emphasis placed on the various topics or build the training around the mix of technologies of interest to you (including technologies other than those included in this outline).
- If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the training course in manner understandable to lay audiences.
The target audience for this training course:
- System engineers
- System architects
- Executives and leaders
- CIO’s managers
- Senior IT managers
Risk Management Framework for DoD & Intelligence Communities Information Technology Training – Course Content
Module 2: C&A Transformation/Transition Overview
Module 3: The IC and the Transformation
Module 4: Roles & Responsibilities
Module 5: Accreditation Boundary
Module 6: System Categorization
Module 7: Select Security Controls
Module 8: Implement, Document & Assess Security Controls
Module 9: Authorize Information System
Module 10: Monitor Information System
Module 11: Reciprocity