The Risk Management Framework Course is an intensive 4 day training experience led by seasoned IS Security professionals. It provides the student with a broad understanding of IS Security policy, principles, rules, and procedures. The course is based upon the three principal guidelines for DoD and intelligence community IS Security: ICD 503\Risk Management Framework, Joint Special Access Program Implementation Guide (JSIG), Risk Management Framework for DoD Information Technology (IT).
At the completion of this course the student will be able to:
Explain the C&A transformation from DCID/JAFAN 6/3 to the RMF process
Understand the Roles and Responsibilities in the RMF process
Understand the Six Risk Management Framework steps
Understand Impact values
Authorization Artifacts and Body of Evidence (BOE) requirements
Understand Administrative and Non-Technical Security features
Understand Technical Security features
The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.