Risk Management Framework in Practice – Building a DoD Security Package (RMF Training)
Course Duration
4 Days
Audience
Employees of federal, state and local governments; and businesses working with the government.
Prerequisites
No prerequisites required.
Course Description
The Building a DoD Security Package training program provides students with a comprehensive working knowledge of RMF, including DoD policies and procedures, along with the practical guidance needed to successfully implement them.
Course Outline
RMF for DoD IT – Fundamentals (Day One)
- Policy Background (FISMA, OMB)
- Roles & Responsibilities
- RMF Lifecycle Overview
- Controls & Assessment Procedures
RMF for DoD IT – In-Depth (Days Two through Four)
- Step 1: Categorize
- Categorize the System
- Describe the System and Boundary
- Conduct a Basic Risk Assessment
- Register the System
- Step 2: Select
- Security Control Overview
- Analyze Security Controls
- Select the Control Baseline
- Tailor the Control Baseline
- Planning for Continuous Monitoring
- Step 3: Implement
- Implement Control Solutions
- Document Security Control Implementation
- STIGs and Automated Tools
- Step 4: Assess
- Identify Security Control Assessment Team
- Prepare for the Security Assessment
- Security Control Assessment Procedures
- Step 5: Authorize
- Types of Authorizations
- Authorization Decisions
- Security Authorization Package
- Documentation
- Step 6: Monitor
- ISCM Strategy Considerations
- Automated Tools
- System Decommissioning and Removal
- Project Planning
- Preparing for Success
- System Acquisition
- Knowledge Service
RMF publications covered in this training program include: DoDI 8500.01, 8510.01; CNSSI 1253, FIPS 199, 200; NIST SP 800-18, 800-30, 800-37, 800-39, 800-53, 800-53A, 800-59, 800-60, 800-137 and more.
Frequently Asked Questions
What does the Risk Management Framework in Practice – Building a DoD Security Package (RMF Training) course cover?
This course covers Risk Management Framework in Practice – Building a DoD Security Package (RMF ) training and best practices. IT Dojo delivers it as live instructor-led training with an emphasis on practical skills for government and DoD professionals.
How long is IT Dojo's Risk Management Framework in Practice – Building a DoD Security Package (RMF Training) training?
IT Dojo's Risk Management Framework in Practice – Building a DoD Security Package (RMF Training) training is 4 Days. It is available as live remote online instruction or on-site at your facility. All sessions are instructor-led with small class sizes to ensure individual attention.
Is this course available as live remote online training?
Yes. IT Dojo offers Risk Management Framework in Practice – Building a DoD Security Package (RMF Training) as live remote online training. A certified instructor leads the session in real time — students interact via chat or microphone. Classes are kept small (typically no more than 16 students) to ensure engagement. On-site delivery at your government facility or contractor location is also available.
Who should attend this course?
Employees of federal, state and local governments; and businesses working with the government.
Does IT Dojo offer this training on-site at government or DoD facilities?
Yes. IT Dojo delivers Risk Management Framework in Practice – Building a DoD Security Package (RMF Training) on-site at government agencies, DoD commands, military installations, and contractor facilities. On-site training is ideal for teams of four or more and can be customized to your organization's specific environment and mission requirements. Contact IT Dojo to schedule.
How do I register for this course?
IT Dojo training is employer-sponsored — your organization registers and pays for seats. To schedule Risk Management Framework in Practice – Building a DoD Security Package (RMF Training) for your team, contact IT Dojo via the Request Training form or call 757-216-3656. IT Dojo will work with your contracting officer, training coordinator, or program office to set up the course.