- November 4, 2019 - November 7, 2019
Background. The NIST Cybersecurity Framework provides a policy framework of computer security guidance for how private sector organizations in the United States can assess and improve their ability to prevent, detect, and respond to cyber attacks.
CSF Fundamentals (One Day) provides a high-level view of CSF. Discussion is centered on identifying the primary drivers (policy and guidance), differentiating amongst the Cybersecurity Framework Core (including functions, categories, subcategories and information references). Students will also learn to identify the various frameworks in the CSF references and describe the Framework profile as it relates to implementation tiers. Additional focus is placed upon the CSF self-assessment process as well as sector-specific guidance.
CSF In-Depth (Three Days) The Cybersecurity Framework (CSF) full program provides a CSF fundamentals overview and then expands on the central tenet of the Framework, which is effective risk management. In this course, participants will have the opportunity to apply the Cybersecurity Framework Core functions, categories, subcategories and information references, and to select controls among the information references. Training includes an overview of information security and risk management with Cybersecurity Framework policies and relevant publications. The program addresses the CSF life cycle which involves the following steps:
- Step 1: Prioritize and Scope
- Step 2: Orient
- Step 3: Create a current profile
- Step 4: Conduct a risk assessment
- Step 5: Create a target profile
- Step 6: Determine, analyze and prioritize gaps
- Step 7: Implement action plan
Additional attention will be given to key topics such as supply chain risk management (SCRM) and primary Cybersecurity Framework related guidance.
Who Should Attend?
The Cybersecurity Framework (CSF) Fundamentals training program is suitable for government employees, contractors, and those employed in private industry who may have job roles which are not focused on Government. The nature of CSF as a voluntary and flexible framework with a goal of being cost-effective in promoting the protection and resilience of critical infrastructure and other sectors of the economy make it useful for an extremely broad audience.
Discount pricing is available when this class is combined with RMF for DoD IT. Please contact us for details.
We have an assortment of supplemental classes that can be bundled with the RMF for DoD IT to enhance your RMF training experience. By bundling you can receive a considerable discount on the supplemental classes.
- Class begins at 8:00 AM each day and ends at approximately 4:30 PM
- Thursday class normally ends at least one hour early
- Suggested dress code: Business Casual
Venue: Online Personal Classroom™
Our Online Personal Classroom Training™ is conducted via AdobeConnect®. You can test your computer for compatibility with Adobe Connect here.