In the ever-evolving landscape of IT training, the debate between self-paced online courses and instructor-led training continues to thrive. While self-paced learning offers flexibility, the pivotal role of live, instructor-led training cannot be overstated, especially in the fast-paced world of technology. In this article, we’ll delve into the significance of instructor-led IT training over self-paced…
In today’s fast-paced and dynamic business environment, traditional project management approaches often fall short in delivering timely and impactful results. Enter SCRUM, a popular Agile framework that revolutionizes project management by promoting collaboration, adaptability, and iterative development. In this blog post, we delve into the principles of SCRUM and highlight how IT Dojo offers specialized…
In the realm of cybersecurity, adherence to rigorous standards and best practices is paramount to safeguarding sensitive information and maintaining the integrity of IT systems. Among the essential tools in the arsenal of cybersecurity professionals are Security Technical Implementation Guides (STIGs). These comprehensive guides, developed by the Defense Information Systems Agency (DISA), provide detailed instructions…
In an era marked by evolving cyber threats and stringent security requirements, the Department of Defense (DoD) plays a pivotal role in safeguarding sensitive information and critical infrastructure. To effectively manage risks and ensure the security of DoD IT systems, the Risk Management Framework (RMF) serves as a comprehensive framework for cybersecurity governance and compliance.…
In the realm of technology, few innovations have captured the imagination and transformed industries as profoundly as Artificial Intelligence (AI) and Machine Learning (ML). From enhancing business operations to revolutionizing healthcare and driving breakthroughs in scientific research, the potential applications of AI and ML are virtually limitless. In this blog post, we embark on a…
In an era of ever-evolving cyber threats, traditional security models are proving to be inadequate in safeguarding sensitive data and systems. Enter Zero Trust, a revolutionary approach to cybersecurity that challenges the conventional notion of trust within networks. In this blog post, we delve into what Zero Trust entails, why it’s crucial for modern businesses,…
By Lon J. Berman, CISSP, RDRP More than ten years ago, RMF came into existence with the intention of becoming the “unified information security framework for the federal government”. With widespread adoption of RMF throughout most federal civil agencies, DoD components and intelligence community agencies, it is safe to say that goal has been met.…
By P. Devon Schall, PhD, CISSP, RDRP Over the past 12 months, I have attended a handful of DoD cybersecurity conferences with the goal of convincing the DoD community that RMF training is a key solution in combatting the perceived RMF crisis. These conferences include the Air Force Information Technology & Cyberpower Conference (AFITC), the…
By Kathryn Daily, CISSP, RDRP NIST has officially released NIST 800-37 Rev 2 and dubbed it as “RMF 2.0.” The framework has been updated to include both cybersecurity and privacy to be key for an authorization decision. “RMF 2.0 gives federal agencies a very powerful tool to manage both security and privacy risks from a…
By Lon J. Berman CISSP, RDRP All of us who have spent time working with RMF have come to understand just what a time-consuming and resource-intensive process it can be. As bad as that may be, it is made even worse when the same application or system ends up going through the RMF process multiple…