Skip to main content

Recent Posts / View All Posts

RMF Alignment with the ISC2 CGRC Exam

| Uncategorized | No Comments
By Kathryn Daily, CISSP, CGRC (Formerly CAP), RDRP BAI’s training programs were developed with the information systems professional in mind. NIST’s Risk Management Framework is one of the most widely used governance, risk and compliance frameworks in the nation and forms the core of the ISC2 CGRC Exam Content (for…

Which Security Controls Are Required? A Definitive Answer

| Uncategorized | No Comments
By Amanda Lowell, Security+CE, RDRP Folks frequently reach out to BAI to ask, “Which security controls are required for X kind of DoD system?” It’s a valid question that can also be indicative of a common misconception.  The short answer is, you will have certain control overlays for your information…

RMF vs CSF: Which is better?

| Uncategorized | No Comments
By Kathryn Daily, CISSP, CGRC, RDRP         I know it’s a catchy headline, but it’s the wrong question to ask.  NIST RMF and CSF are two totally different animals with a different purpose.  NIST RMF is primarily focused on managing overall organizational risk, providing a structured approach…