Risk Management Framework for Federal Security Controls Assessors 4-Day Course
This course concentrates on how to validate NIST SP 800-53 Rev 4 Security Controls and meet the requirements for the Assessment and Authorization of the IT system. This course features an in-depth explanation of each security control, including testing methodology, control validation, and evidence collection techniques. This course teaches the independent tester or validator how to test the process for any of the Federal IA controls, using manual and automated tests, to ensure all controls are tested properly. The security controls assessors course covers NIST SP 800-53A Rev. 4, NIST SP 800-115, NIST SP 800-37, NIST SP 800-39 and the development of the Security Assessment Report (SAR), and Plan of Action and Milestones (POA&M). The student will have a hands-on experience using scenario-based hands-on exercises in executing the validation tests with the approved tools. These exercises will include the development of the Security Assessment Report (SAR).
Course includes the following takeaway items: a printed training book and a CD that includes reference materials pertaining to the course.
NICE Work Roles
Security Control Assessor
Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST SP 800-37).
Secure Software Assessor
Analyzes the security of new or existing computer applications, software, or specialized utility programs and provides actionable results.
No image gallery for this course as of yet.
No video for this course as of yet.