RMF for DoD SCA (Risk Management Framework for DoD & Intelligence Communities Security Controls Assessors
This 4-day course concentrates on methods used to validate DoD IA Controls as contained in NIST 800-53, Rev. 4 and CNSSI 1253. Discussion areas include an overview of the RMF for Intelligence Communities and DoD Security Controls Assessors, the DoD-defined information system types and the associated security concerns, vulnerability scanning, DoD-approved automated scanning tools, and many more. The course provides an in-depth explanation of each control identified in NIST 800-53, Rev. 4 and CNSSI 1253 to include the appropriate testing method, associated supporting evidence (known as artifacts), and how to more efficiently and effectively test and validate DoD systems and infrastructure. The curriculum will prepare the ACA to test against the DoD IA controls using manual and automated procedures in accordance with the standards set forth by the Department.