Successful completion of this exam will demonstrate a candidate's ability to integrate an organization-wide risk management process. The candidate will be able to demonstrate their knowledge on the system development life cycle, information system boundaries, and security control allocations. The candidate will have a strong understanding of each step in the Risk Management Framework (RMF). The candidate will be able demonstrate their ability to implement security and privacy controls for federal information systems and other organizations.
Successful completion of this exam will demonstrate the candidate's ability to oversee the cyber security program of an information system in or outside the network environment. They shall fully comprehend the Risk Management Framework and implement all steps within.