BAI Blog – Information Security I RMF Training

Dear Dr. RMF

Daphne in Kansas City asks: Dr. RMF, we are bidding on a multi-year contract to provide services to a DoD agency. The process is down to the final stage and we are looking good to win the work. Assuming we are awarded the work, the government will be requiring us…

Kathryn Daily In Dr. RMF

Dear Dr. RMF

Sean from US Navy asks: Dr. RMF, we are working on an acquisition for several new medical imaging devices in our hospital. Each of these new devices contains an embedded computer running the Linux operating system. A connection to the hospital’s data network is used to send imaging data to…

Kathryn Daily In BAI Announcements

New Training Opportunity!

Security Controls Implementation Workshop By P. Devon Schall, PhD, CISSP, RDRP If you ask an RMF practitioner what the most challenging part of the RMF process is you’re likely to hear them reference responding to security controls! With thousands of assessment procedures, even those with a strong understanding of RMF…

Kathryn Daily In Dr. RMF

Dear Dr. RMF

Tony from OSD asks: Dr. RMF, I currently assess a boundary that includes all of our desktops, laptops, network printers, and some local printers. There are a number of devices (i.e. desktop/laptops) that don't store Personally Identifiable Information (PII) per se, but will disseminate PII to our records management boundary…

Kathryn Daily In Risk Management Framework

Happy Birthday, RMF!

By Lon J. Berman, CISSP, RDRP This month we will be celebrating our oldest grandson’s tenth birthday. It suddenly made me realize that with everything that’s been going on in 2020, it appears we missed another significant birthday this year – February marked the tenth birthday of the Risk Management…

Kathryn Daily In Federal Government

Federal Hiring Process Overhaul: Stressing Skills vs Traditional Academic Achievement

By Amanda Jones On June 26, 2020, President Donald J. Trump issued the Executive Order on Modernizing and Reforming the Assessment and Hiring of Federal Job Candidates, in an effort to bring government agencies up to speed with newer hiring standards in the private sector. This comes in the wake…

Kathryn Daily In emass

BAI’s Hands-on eMASS Simulator

by P. Devon Schall, PhD, CISSP, RDRP BAI recognizes that eMASS is a stumbling block for many new RMF practitioners. To mitigate these challenges, our instructional designers felt the creation of an eMASS sandbox environment where our students could practice working in eMASS without being scared to submit incorrect data…

Kathryn Daily In DCSA

RMF Supplement for DCSA Cleared Contractors

By Lon J. Berman, CISSP, RDRP In a previous edition (January, 2020) of RMF Today … and Tomorrow, we presented an overview of the adoption of RMF and eMASS by the Defense Counterintelligence and Security Agency (DCSA) for use by cleared contractor companies operating within the National Industrial Security Program…

Kathryn Daily In Dr. RMF

Dear Dr. RMF

Dear Dr. RMF, I have a boundary for a web application. My SISO wants to move another web application into this approved boundary. The move is because both have similar operating characteristics, security and privacy requirements, and reside in the same environment of operation. As the SCA for the receiving…

Kathryn Daily In Dr. RMF

Dear Dr. RMF

Dear Dr. RMF, In my research I cannot find any Agency level documentation that states this, however, I have located examples of contracts that have PII guidance pertaining to contractors. So, would it be considered compliant if I have examples of the contracts or should this be documented at Agency…

Blog

Dear Dr. RMF

Dear Dr. RMF

New Training Opportunity!

Dear Dr. RMF

Happy Birthday, RMF!

Federal Hiring Process Overhaul: Stressing Skills vs Traditional Academic Achievement

BAI’s Hands-on eMASS Simulator

RMF Supplement for DCSA Cleared Contractors

Dear Dr. RMF

Dear Dr. RMF

Site Search

Recent Posts