Training Overview

RMF for DoD IT
Full Program

(Four Days)

Training begins with an overview of information security and risk management continuing with RMF for DoD IT policies, roles and responsibilities, and relevant publications. The program includes a high-level understanding of the RMF for DoD IT life cycle including security authorization (certification and accreditation) along with the RMF documentation package and NIST security controls. The training program covers the six steps of the RMF life cycle (categorize, select, implement, assess, authorize, monitor) at a detailed level that enables practitioners to immediately apply the training to their daily work environment. Learners gain an in-depth knowledge of the relevant DoD, NIST and CNSS publications along with the practical guidance needed to implement them. Each life cycle activity in the DoD Instruction 8510.01 is covered in detail along with each component of the corresponding documentation package. NIST Special Publication (SP) 800-53 Security Controls along with corresponding assessment procedures are covered in detail as are CNSS Instruction 1253 enhancements. Also included is information on the transition from DIACAP to RMF as well as the application of the eMASS tool to various aspects of the RMF life cycle.

Successful completion of the 4 day RMF training course will provide the necessary knowledge to sit for the CAP (Certified Authorization Professional) Exam by ISC2.

RMF for DoD IT
Fundamentals Only

(One Day)

Students who need only a high-level exposure to RMF can register for the first day of the training program. This “Fundamentals Only” option includes the RMF policy background as well as a high-level treatment of RMF roles and responsibilities, life cycle, security controls, and documentation.

Who should attend?

The RMF for DoD IT training program is suitable for DoD employees and contractors as well as their supporting vendors and service providers.


4 days

The full RMF for DoD IT  training program is four days. It is highly recommended students complete the full course to gain a thorough understanding of the intricacies of RMF implementation.

Course Overview & Outlines

Please Click here for a detailed course overview and outline of RMF for DoD IT Training.

Delivery Methods

The RMF for DoD IT training program is offered on a regularly-scheduled basis in

Aberdeen | CharlestonColorado SpringsDayton | Huntsville | National Capital Region | Pensacola | San Antonio | San Diego | SeattleSouthern Maryland

Training is also available to distance learners via Online Personal Classroom™ technology.

Please click here for a schedule of upcoming classes.


On-site training

If you have a group of trainees (normally 8 or more) and a suitable classroom facility, any of our training programs can be presented at your site.

Please click here to request a quote.

Training fees

“Per-student” fees for regularly-scheduled RMF for DoD IT training are as follows:

BOTH CLASSES (total of four days): $1,935
RMF for DoD IT Fundamentals (one day): $650

Payment options for regularly-scheduled training are as follows:

Credit card – Visa, MasterCard and American Express
SF182 – government entities may submit an SF182 for invoicing after completion of training
PO – purchase orders are accepted from government and major corporate entities

How to Register

Registration for regularly-scheduled classes can be completed in two ways:

Online (recommended)

Click here for online registration and payment.

By FAX or e-mail

Click here for a printable registration form.

RMF education doesn’t stop when your class ends!

TrainPlus™ is a monthly, invitation-only teleconference with one of our BAI RMF subject matter experts. If you have questions lingering from your training, or you’ve encountered a problem implementing RMF in the “real world”, we are there to help you. Regardless of whether you attend RMF training in one of our BAI classroom locations, our Online Personal Classroom, or on-site at your agency/company location, there is never any additional charge for this “post training support”.