In this course, you will gain an understanding of the new authorization process and prepare for the CAP certification exam, based on the new SP 800— 37 process and the new (ISC)2 Common Body of Knowledge (CBK).
New processes and concepts, including:
Authorization process (NIST SP 800— 37, revision 1)
Risk assessment process (NIST SP 800— 30)
Risk Management Framework (NIST SP 800— 39)
Incident response and contingency planning (NIST SP 800— 65 and SP 800— 34)
Information System Continuous Monitoring(NIST SP 800— 53A SP 800— 137)
Individual and organization (Office of Management and Budget, Department of Homeland Security, NIST, and National Security Agency) roles, responsibilities, requirements, and reports
CAP certification exam preparation
Common, system— specific, hybrid, and compensating controls
CyberScope and CyberStat
Security Content Automation Protocol (SCAP) and methods for media sanitization
Effective strategies for process implementation and test— taking
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.