Federal Risk Management Framework (RMF) 2.0

Federal Risk Management Framework (RMF) 2.0 Implementation DoD/IC Edition focuses on the Risk Management Framework prescribed by NIST Standards. This edition focuses on RMF as implemented within the Department of Defense (DoD) and Intelligence Communities (IC).

This course can also be used to aid in preparation for the ISC2 Certified Authorization Professional (CAP) exam, although it does not cover 100% of the CAP exam requirements. If your goal is primarily to prepare for the CAP Exam, you should use our course, Federal Risk Management Framework (RMF) 2.0 Implementation with CAP Exam Review.

This course is current as of March 2019. It was revised due to NIST producing new and updated publications over the preceding two years, including SP 800-37, rev. 2; SP-800-53, rev. 5; SP 800-160, V1 and V2; and SP 800-171, rev. 1 among others. It was also revised due to additional DoD updates to DODI 8510.01. D

The course comes with a disk of reference materials including sample documents, NIST publications, and regulatory documents. Downloadable ancillary materials include a study guide and a References and Policies handout. Instructors will also be given access to an exam with answer key.

RMF Training Details:

Price: $2,150 - GSA pricing available
4-Day instructor-led skills based training course
30+ hours of training from a RMF expert
RMF classes can be delivered onsite for groups of 5 or more students
Eligible for MyCAA scholarship
RMF follows NICE framework for the Securely Provision job category

Ready to Train? Submit the form to the right for any questions or register below for an upcoming class!

Should I Take This Course?

This course is designed for system owners, administrators, developers, integrators, and information assurance staff who need to understand:

FISMA
RMF process (including Security Authorization or A&A)
NIST baseline security controls
Documentation package
Continuous monitoring process

Recommended Experience

Before attending this course, students should have:

Knowledge and experience with information security systems and best practices
There are no requirements for this course

Request More Information

Class Details

Price: $2,150

Risk Management Framework (RMF) is the unified information security framework for the entire federal government that is replacing the legacy Certification and Accreditation (C&A) processes within federal government departments and agencies, the Department of Defense (DOD) and the Intelligence Community (IC). DoD officially began its transition from the legacy DIACAP process to the new "RMF for DoD IT" process.

RMF Training Includes:

Class exercises in addition to training instruction
Courseware books, notepads, pens, highlighters and other materials
eBooks will be emailed to students registered for Live Online training the week prior to the start of class
Full breakfast with variety of bagels, fruits, yogurt, doughnuts and juice
Tea, coffee, and soda available all day
Freshly baked cookies every afternoon - *only at participating locations

Module 1: Introduction

RMF overview
DoD- and IC- Specific Guidelines
Key concepts including assurance, assessment, authorization
Security controls

Module 2: Cybersecurity Policy Regulations & Framework

Security laws, policy, and regulations
DIACAP to RMF
System Development Life Cycle (SLDC)
Documents for cyber security guidance

Module 3: RMF Roles and Responsibilities

Tasks and responsibilities for RMF roles

Module 4: Risk Analysis Process

Overview of risk management
Four-step risk management process
Tasks breakdown
Risk assessment reporting and options

Module 5: Step 1: Categorize

Step key references and overview
Sample SSP
Task 1-1: Security Categorization
Task 1-2: Information System Description
Task 1-3: Information System Registration
Lab: The Security Awareness Agency

Module 6: Step 2: Select

Step key references and overview
Task 2-1: Common Control Identification
Task 2-2: Select Security Controls
Task 2-3: Monitoring Strategy
Task 2-4: Security Plan Approval
Lab: Select Security Controls

Module 7: Step 3: Implement

Step key references and overview
Task 3-1: Security Control Implementation
Task 3.2: Security Control Documentation
Lab: Security Control Implementation

Module 8: Step 4: Assess

Step key references and overview
Task 4-1: Assessment Preparation
Task 4-2: Security Control Assessment
Task 4-3: Security Assessment Report
Task 4-4: Remediation Actions
Task 4-5: Final Assessment Report
Lab: Assessment Preparation

Module 9: Step 5: Authorize

Step key references and overview
Task 5-1: Plan of Action and Milestones
Task 5-2: Security Authorization Package
Task 5-3: Risk Determination
Task 5-4: Risk Acceptance DoD Considerations
Lab Step 5: Authorize Information Systems

Module 10: Step 6: Monitor

Step key references and overview
Task 6-1: Information System & Environment Changes
Task 6-2: Ongoing Security Control Assessments
Task 6-3: Ongoing Remediation Actions
Task 6-4: Key Updates
Task 6-5: Security Status Reporting
Task 6-6: Ongoing Risk Determination & Acceptance
Task 6-7: Information System Removal & Decommissioning
Continuous Monitoring
Security Automation Domains
Lab: Info System & Environment Changes

Module 11: DoD/IC RMF Implementation

eMASS
RMF Knowledge Service
DoD/IC Specific Documentation
RMF within DoD and IC process review

Understand the Risk Management Framework for DoD IT Authorization process
Understand FISMA and NIST processes for authorizing Federal IT systems
Explain key roles and responsibilities
Explain statutory and regulatory requirements
Apply these principles to real-world activities and situations

Register for Class

Show only Online/Virtual Classes

Date	Location

04/22/19 - 04/25/19, 4 days, 8:30AM – 4:30PM	Columbia, MD	Sold Out!
04/22/19 - 04/25/19, 4 days, 8:30AM – 4:30PM	Montgomery, AL	Sold Out!
05/06/19 - 05/09/19, 4 days, 8:30AM – 4:00PM	Oklahoma City, OK	Sold Out!
05/13/19 - 05/16/19, 4 days, 8:30AM – 4:00PM	Columbia, MD	Register
05/20/19 - 05/23/19, 4 days, 8:30AM – 4:00PM	San Antonio, TX	Sold Out!
05/21/19 - 05/24/19, 4 days, 8:30AM – 4:30PM	Tysons Corner, VA	Register
05/28/19 - 05/31/19, 4 days, 8:30AM – 4:30PM	Online	Register
05/28/19 - 05/31/19, 4 days, 8:30AM – 4:30PM	Columbia, MD	Register
06/10/19 - 06/13/19, 4 days, 8:30AM – 4:00PM	Scott AFB, IL	Sold Out!
07/08/19 - 07/11/19, 4 days, 8:30AM – 4:00PM	Columbia, MD	Register
07/22/19 - 07/25/19, 4 days, 8:30AM – 4:30PM	Tysons Corner, VA	Register
07/29/19 - 08/01/19, 4 days, 8:30AM – 4:30PM	Online	Register
07/29/19 - 08/01/19, 4 days, 8:30AM – 4:30PM	Columbia, MD	Register
09/23/19 - 09/26/19, 4 days, 8:30AM – 4:30PM	Tysons Corner, VA	Register
09/30/19 - 10/03/19, 4 days, 8:30AM – 4:30PM	Columbia, MD	Register
09/30/19 - 10/03/19, 4 days, 8:30AM – 4:30PM	Online	Register
12/02/19 - 12/05/19, 4 days, 8:30AM – 4:30PM	Tysons Corner, VA	Register
12/09/19 - 12/12/19, 4 days, 8:30AM – 4:30PM	Online	Register
12/09/19 - 12/12/19, 4 days, 8:30AM – 4:30PM	Columbia, MD	Register
12/16/19 - 12/19/19, 4 days, 8:30AM – 4:00PM	Raleigh, NC	Register

Federal Risk Management Framework (RMF) 2.0

Ready to Train? Submit the form to the right for any questions or register below for an upcoming class!

Should I Take This Course?

Recommended Experience

Request More Information

Class Details

Price: $2,150

RMF Training Includes:

Course Outline

Objectives

Register for Class

Federal Risk Management Framework (RMF) 2.0

Ready to Train? Submit the form to the right for any questions or register below for an upcoming class!﻿

Should I Take This Course?

Recommended Experience

Request More Information

Class Details

Price: $2,150﻿

RMF Training Includes:

Course Outline

Objectives

Register for Class

Ready to Train? Submit the form to the right for any questions or register below for an upcoming class!

Price: $2,150