*Pre-conference courses require pre-registration.
Instructor: Kevin Stoffell

Course Description:

The Certified Authorization Professional (CAP) online instructor led course covers the essentials of the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF). The NIST RMF is the required process for Federal agencies to use in authorizing Information Technology (IT) systems for use and to ensure cybersecurity protections are applied to all Federal Systems. The CAP two-day course covers the essentials of the NIST process and combined with an individual study plan, prepares students for the CAP certification examination.

-Presentation. The facilitator will explain content to participants using PowerPoint to guide the presentation. Multiple examples will be used to clarify points.
-Short Lecture/Discussion. The facilitator will engage participants in conversation by asking questions and encouraging them to respond. Participants will be encouraged to provide examples from their experience.
-Individual/Group Activity. Participants may work in small teams or individually to study example problems and develop solutions based on course content. The facilitator will debrief with the entire class at the end of the activity.

 

Course Objectives:

-After completing this workshop, participants will understand:
-The NIST Risk Management Framework Benefits 
-The NIST Risk Management Framework process
-This NIST Risk Management Framework roles and responsibilities
-Methods to adapt the RMF to organizational needs
-Differences between RMF v1 and v2 (SP800-37 revision 1 vs revision2)

Who should attend?

(ISC)2 Certified Authorization Professional (CAP®) Two-Day course is ideal for IT, information security, and information assurance practitioners and contractors who use the NIST Risk Management Framework (RMF) to include system owners, system developers, security assessors, organizational risk management staff and system authorizers.