Successful completion of this exam will demonstrate a candidate's ability to understand the processes and procedures required to prevent, detect, investigate, contain, eradicate, and recover from incidents that impact the organizational mission. The candidate shall demonstrate their knowledge and understanding of the required authority to formally assume responsibility and be held fully accountable for operating an information system at an acceptable level of risk. The candidate shall demonstrate and understand the processes and procedures required to appropriately categorize and report cybersecurity incidents as dictated by policy as well as coordinate and communicate incident response actions with Law Enforcement Agencies, Federal agencies, and/or external governmental entities.
Successful completion of this exam will demonstrate the candidate's ability to comprehend the roles of a senior official or executive with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to organizational operations and assets, individuals, other organizations, and the Nation.
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.