The NIST Cybersecurity Framework (NCSF) course introduces the NIST Cybersecurity Framework (NIST CSF). The Framework is a risk-based approach to managing cybersecurity risk, and is composed of three parts: the Framework Core, the Framework Implementation Tiers, and the Framework Profiles. Each Framework component reinforces the connection between business drivers and cybersecurity activities. The NCSF Foundation training course outlines current cybersecurity challenges and explains how organizations who implement a NCSF program can mitigate these challenges. This course discusses how an organization can use the Framework as a key part of its systematic process for identifying, assessing, and managing cybersecurity risk. The Framework is not designed to replace existing processes; an organization can use its current process and overlay it onto the Framework to determine gaps in its current cybersecurity risk approach and develop a roadmap to improvement. Utilizing the Framework as a cybersecurity risk management tool, an organization can determine activities that are most important to critical service delivery and prioritize expenditures to maximize the impact of the investment. The class will include lectures, informative supplemental reference materials, quizzes, and tests. Outcomes and benefits from this class is a fundamental understanding of cybersecurity and the NIST CSF. The optional certification exam is through ACQUIROS. Students must pass a 90 minute, 100 question closed book multiple-choice examination with a passing score of 70% in order to receive this certification.
There are no prerequisites for this course, although basic security knowledge will be helpful.
1 Day/Lecture & Lab
This course is for anyone wanting to learn how an organization can use the Framework as a key part of its systematic process for identifying, assessing, and managing cybersecurity risk.