INT-2685 Certification and Accreditation Professional Preparation
This course is designed for the information security students who may be called upon to ensure system security is commensurate with an organization’s mission and risk tolerance, while meeting legal and regulatory requirements. It conceptually mirrors the National Institute of Standards and Technology’s (NIST) system authorization process. IT provides a comprehensive review of information systems security concepts and industry best practices, in addition to covering the 7 domains of the Certification and Accreditation Professional (CAP) Common Body of Knowledge (CBK).
Job functions such as authorization officials, system owners, information owners, information system security officers, certifiers, and system managers are appropriate fits for the CAP certification.
Prerequisite(s): INT-1620 .
Corequisite(s): INT-1620 .
- Explain the Risk Management Framework
- Describe FISMA and NIST processes for authorizing information IT systems.
- Explain key roles and responsibilities outlined in the RMF.
- Explain statutory and regulatory requirements
- Apply RMF principles to real-world activities and situations
- Explain the selection, implementation, documentation, assessment of security controls
- Explain the process for developing and implementing a continuous monitoring program
Add to Portfolio (opens a new window)