Risk Management Framework for Federal Systems In-Depth 3 Day
Lunarline’s Federal Information Security Management Act (FISMA) training provides students with a fundamental knowledge of the requirements for meeting FISMA requirements, as well as an in-depth look of the Federal system authorization process and Risk Management Framework (RMF). This training equips the students with an in-depth indoctrination into the RMF and they will learn the requirements for managing risk, and ensuring that the confidentiality, availability and integrity of federal information and information systems is protected at a level commensurate with the security requirements of the information and the information system. Students will participate in a series of scenario-based hands-on exercises to enhance understanding of the processes used for system authorization, including all of the elements of the Risk Management Framework. These exercises will include the development of Systems Security Plans (SSPs), Security Assessment Reports (SARs), and Plans Of Action and Milestones (POA&Ms) for Federal Information Systems. This training is a CNSS approved course that deals with the new C&A transformation. Please note – this course has been aligned with NIST SP 800-37 Revision 1 and is the new process under the C&A transformation.
The FISMA In-Depth Course covers the requirements and the use of FIPS 199, NIST SP 800-60, NIST SP 800-37 Revision 1, NIST SP 800-39, NIST SP 800-30, NIST SP 800-34, NIST SP 800-53 Revision 4, and NIST SP 800-53A.
- Critical Definitions and Policies
- C&A Transformation/Transition Overview
- The IC and the Transformation
- Roles and Responsibilities
- Accreditation Boundary
- System Categorization
- Select Security Controls
- Implement, Document & Assess Security Controls
- Authorize Information System
- Monitor Information System
Lunarline’s FISMA/NIST classes include the following takeaway items: An Android tablet that is uploaded with our training material, a comprehensive set of National Institute of Standards and Technology (NIST) – DoD approved templates, as well as copies of the guidelines, instructions, standards, and presentations discussed during the training.
You will receive your National Security Agency (NSA) and Committee on National Security Systems (CNSS) NSTISSI 4011, Information System Security Professional and CNSSI 4012, Senior IA System Manager Certificate. As well as earning CPE’s to your existing certifications with CompTIA, ISC2, ISACA and IAPP.