In the ever-evolving landscape of IT training, the debate between self-paced online courses and instructor-led training continues to thrive. While self-paced learning offers flexibility, the pivotal role of live, instructor-led training cannot be overstated, especially in the fast-paced world of technology. In this article, we’ll delve into the significance of instructor-led IT training over self-paced…
In today’s fast-paced and dynamic business environment, traditional project management approaches often fall short in delivering timely and impactful results. Enter SCRUM, a popular Agile framework that revolutionizes project management by promoting collaboration, adaptability, and iterative development. In this blog post, we delve into the principles of SCRUM and highlight how IT Dojo offers specialized…
In the realm of cybersecurity, adherence to rigorous standards and best practices is paramount to safeguarding sensitive information and maintaining the integrity of IT systems. Among the essential tools in the arsenal of cybersecurity professionals are Security Technical Implementation Guides (STIGs). These comprehensive guides, developed by the Defense Information Systems Agency (DISA), provide detailed instructions…
In an era marked by evolving cyber threats and stringent security requirements, the Department of Defense (DoD) plays a pivotal role in safeguarding sensitive information and critical infrastructure. To effectively manage risks and ensure the security of DoD IT systems, the Risk Management Framework (RMF) serves as a comprehensive framework for cybersecurity governance and compliance.…
In the realm of technology, few innovations have captured the imagination and transformed industries as profoundly as Artificial Intelligence (AI) and Machine Learning (ML). From enhancing business operations to revolutionizing healthcare and driving breakthroughs in scientific research, the potential applications of AI and ML are virtually limitless. In this blog post, we embark on a…
In an era of ever-evolving cyber threats, traditional security models are proving to be inadequate in safeguarding sensitive data and systems. Enter Zero Trust, a revolutionary approach to cybersecurity that challenges the conventional notion of trust within networks. In this blog post, we delve into what Zero Trust entails, why it’s crucial for modern businesses,…
By Lon J. Berman CISSP, RDRP Thanks to the work of the Joint Task Force, RMF is now the official information security life cycle process across all three “segments” of the Executive Branch, i.e., DoD, federal civil agencies, and the intelligence community. It’s now been 4 ½ years since DoD officially “adopted” RMF (DoDI 8510.01,…
By Kathryn Daily, CISSP, RDRP I’m sure by now you’ve at least familiarized yourself with NIST 800- 171, “Protecting Unclassified Information in Nonfederal Information Systems and Organizations.” What wasn’t made clear was how DoD will evaluate a contractor’s System Security Plan (SSP). In May, DoD released draft DoD Guidance for Reviewing System Security Plans and…
By Kathryn Daily, CISSP, RDRP If you heard a whooshing sound on New Years Eve, that was probably the deadline for compliance with NIST 171 flying by. A lot of you might be asking “What is NIST 171?” NIST 171 is a set of requirements documented in the NIST Special Publication 800-171 (Protecting Controlled Unclassified…
Attention information assurance and cyber security professionals in Hampton Roads! IT Dojo is running an RMF for DoD IT training course in the Virginia Beach/Norfolk area July 11 – 14. Seating is limited, but this course is guaranteed to run! We have delivered this course to hundreds of individuals throughout the country and the response…