Risk Management Framework for DoD & Intelligence Communities IT Training

Risk Management Framework for DoD & Intelligence Communities IT Training

Print Friendly, PDF & Email

Introduction:

Risk Management Framework for DoD & Intelligence Communities Information Technology Training Course Hands-On Exercises (Online, Onsite and Classroom Live)

Risk Management Framework for DoD & Intelligence Communities Information Technology course equips the student with an overview of the system authorization process (also known as C&A) and the Risk Management Framework (RMF) for National Security Systems (NSS).

In addition to the classroom instruction, the student will also participate in several scenario-based hands-on exercises in the implementation of the RMF to provide a clear knowledge bridge to the revised system authorization processes for those currently working with C&A for National Security Systems or for those who have limited or no C&A experience. These exercises will include the development of Systems Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms) for a NSS.

This Risk Management Framework for DoD & Intelligence Communities Information Technology course meets the requirements of National Security Directive 42 (NSD-42), which outlines the roles and responsibilities for securing NSSs. The CNSS In-Depth Course will address the Federal and Intelligence Community requirements, including NIST SP 800-37, NIST SP 800-39, CNSS 1199 and CNSS 1253.

Duration: 4 days

Related Courses

Customize It:

  • If you are familiar with some aspects of Risk Management Framework for DoD & Intelligence Communities Information Technology course, we can omit or shorten their discussion.
  • We can adjust the emphasis placed on the various topics or build the Risk Management Framework for DoD & Intelligence Communities Information Technology course around the mix of technologies of interest to you (including technologies other than those included in this outline).
  • If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the Risk Management Framework for DoD & Intelligence Communities Information Technology course in manner understandable to lay audiences.

Audience / Target Group:

The target audience for this Risk Management Framework for DoD & Intelligence Communities Information Technology course is defined here:

  • System engineers
  • System architects
  • Executives and leaders
  • Managers
  • CIO’s managers
  • Senior IT managers

Risk Management Framework for DoD & Intelligence Communities Information Technology Training – Objectives:

  • Introduction to the Risk Management Framework and supporting laws, standards, and regulations
  • The New Lexicon
  • New Requirements under FISMA 2014
  • RMF Roles and Responsibilities
  • Steps in the RMF Process
  • Preparing and submitting the authorization package
  • Understanding and executing continuous monitoring

Students will engage in a series of hands-on activities that will provide active learning of the new processes, preparation of the documentation, and execution of the required security control assessments.

Risk Management Framework for DoD & Intelligence Communities Information Technology Training – Course Syllabus

  • Module 1: Critical Definitions and Policies
  • Module 2: C&A Transformation/Transition Overview
  • Module 3: The IC and the Transformation
  • Module 4: Roles & Responsibilities
  • Module 5: Accreditation Boundary
  • Module 6: System Categorization
  • Module 7: Select Security Controls
  • Module 8: Implement, Document & Assess Security Controls
  • Module 9: Authorize Information System
  • Module 10: Monitor Information System
  • Module 11: Reciprocity

Whether you are looking for general information or have a specific question, we want to help!

Request More Information

    Time frame:

    0