• Classroom
  • Online, Self-Paced
Course Description

Successful completion of this exam will demonstrate a candidate's ability to exhibit their ability to integrate an organization-wide risk management process. They will be able to demonstrate their knowledge on the system development life cycle, information system boundaries, and security control allocations. The candidate will have a strong understanding of each step in the Risk Management Framework (RMF). They will be able demonstrate their ability to implement security and privacy controls with an emphasis on security control assessment policy and procedures.

Learning Objectives

Successful completion of this exam will demonstrate the candidate's ability to understand the system development life cycle, implement security controls, and design Information System boundaries in accordance with the Risk Management Framework (RMF).

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.


If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.