Online Cloud Security Risk Management Policy and Methods Review
Level: Intermediate
Become a Job-Ready Certified Cloud Risk Management Professional (CCRMP). To prevent the $2.1T in projected cyber breaches, employers need Certified Cloud Risk Management Professionals who have demonstrated they can implement the NIST Risk Management Framework and FedRAMP. The NIST Risk Management Framework (RMF) and the Federal Risk and authorisation Management Program (FedRAMP) are the de facto standards utilised for cloud security risk management in the U.S. today.
To address accelerating cyber staffing shortages, Mission Critical Institute (MCI) established the CCRMP to provide employers and candidates a performance-based cloud security certification.
As an MCI authorised training partner, Learning Tree can help you earn the CCRMP through five courses that ensure you acquire hands-on project experience in implementing the NIST RMF and FedRAMP.
This is the first of five courses that help you earn CCRMP certification.
Key Features of this Online Cloud Security Risk Management Policy and Methods Review:
- 100% hands-on projects — no exam
- Validation you are NIST RMF/FedRAMP job-ready
- Certified NIST RMF/FedRAMP practitioner instructors
- NIST RMF/FedRAMP project experience employers seek
- Recognition of curriculum by Department of Homeland Security
You Will Learn How To:
- Demonstrate ability to determine the compliance implications of federal cybersecurity policies for the various categories of clients served
- Demonstrate business communication skills for job-readiness
- Define and analyse risk tolerance as it applies to an organization's decision-making process
- Analyse CAP Domain learning contributions to certification preparation
- Analyse the NIST RMF approach to Enterprise Risk Management (ERM)
- Apply the NIST RMF to a practical scenario for addressing FISMA compliance
- Evaluate the Joint Task Force Transformation Initiative (JTFTI)
- Analyse systems for categorization and align with policy and guidance
- Develop a System Security Plan appropriate for a system
- Determine if any part of a system is cloud-based
- Identify the requirements of Personally Identifiable Information (PII) and apply appropriate controls
- Develop Information System Continuous Monitoring (ISCM) Strategy
Choose the CCRMP Training Solution That Best Fits Your Individual Needs or Organisational Goals
ONLINE, INSTRUCTOR-LED
Online Instruction + Live Seminars
- 8 weeks of "anywhere anytime" online instruction plus 4 live, online seminars
- Earn academic credits for your accredited cloud security degree
- Complete your 100% hands-on CCRMP certification
- Tuition fee can be paid later by invoice -OR- at the time of checkout by credit card
TRAINING AT YOUR SITE
Team Training
- Bring this or any training to your organisation
- Full - scale program development
- Delivered when, where, and how you want it
- Blended learning models
- Tailored content
- Expert team coaching
Customize Your Team Training Experience
CONTACT USSave More on Training with Learning Tree Training Vouchers!
Our flexible, easy-to-redeem training vouchers are available to any employee within your organisation. For details, please call 0800 282 353 or chat live.
Online Instruction + Live Seminars
Guaranteed to Run
When you see the "Guaranteed to Run" icon next to a course event, you can rest assured that your course event — date, time, location — will run. Guaranteed.CCRMP Policy and Methods Course Information
CCRMP Policy and Methods Review Course Description
Students review and analyse the compliance implications of selected cloud security policies and methods with a specific focus on the NIST Risk Management Framework (RMF) and FedRAMP.
Prerequisites
Three years of relevant professional experience is required.
Course Schedule
The flexible, online 8-week course schedule enables you to collaborate with your instructor and fellow students to acquire the cloud security risk management expertise employers seek.
Online, Instructor-Led Discussions
Weekly virtual discussions focus on a specific cloud security risk management concept. You can participate in these discussions anytime, anywhere as you interact with your instructor and fellow students online.Four Live Virtual Seminars
At 10 a.m. ET on alternate Saturdays you will participate in live-online interactive sessions led by your expert, practitioner instructor. Recordings of each session will be available to you.Virtual Office Hours
To further enhance your learning experience, you may communicate with your instructor during weekly virtual office hours.Course Materials
- Broad, J. (2013). Risk Management Framework: A Lab-Based Approach to Securing Information Systems. Imprint: Syngress.
E-Book ISBN: 9780124047235
Print Book ISBN: 97815974999598
Cost: $50.00 USD
- The course also contains links to a Course Webliography for required readings.
- Broad, J. (2013). Risk Management Framework: A Lab-Based Approach to Securing Information Systems. Imprint: Syngress.
Coursework
Students will work with their NIST RMF/FedRAMP practitioner instructor to produce NIST RMF/FedRAMP projects by participating in weekly virtual discussions, as well as completing weekly assignments and project reports. They will attend bi-weekly, live virtual seminars led by their instructor.
Software/Hardware Required
- Access to Microsoft Office, including Word, Excel, and a PDF reader.
- Access to high-speed internet connection.
- A headset with microphone is recommended; using built-in speakers/microphone causes echo issues. Headsets give participants complete interaction with the instructor and other students.
CCRMP Policy and Methods Review Course Outline
Analyse Compliance Implications of Federal Cybersecurity Policies for the Various Categories of Clients Served
- Overview of cybersecurity policy
- Concept of risk management
- Effective communication
- National Security Systems (NSS) vs. non-NSS system categorization
Define and Analyse Risk Tolerance as it Applies to an Organization's Decision-Making Process
- NIST RMF approach to Enterprise Risk Management (ERM)
- Effect of third-party risk management (accepting levels of risk)
- Laws, regulation, and guidance
Assess FISMA Compliance by Applying the NIST RMF to a Practical Scenario
- Joint Task Force Transformation Initiative (JTFTI)
- Authorisation boundaries and cloud risk management
- Levels of risk for cloud types
- Cloud service models
Analyse Systems for Categorization
- Policy and guidance
- FedRAMP Control Implementation Summary spreadsheet
- FIPS 199
Incorporate Privacy into a System Security Plan
- Requirements of Personally Identifiable Information (PII) and apply appropriate controls
- Privacy laws, privacy guidance, protecting PII
- Privacy Threshold Analysis (PTA) and Privacy Impact Assessments (PIA)
Develop Information Security Continuous Monitoring (ISCM) Strategy
- Phases of control selection
- Overlays for control selection
- Using the FedRAMP SSP for ISCM
ISCM Strategy and the SSP
- Information Security Continuous Monitoring (ISCM) Strategy
- System Security Plan tailored to a system
Team Training
CCRMP Policy and Methods Review Course FAQs
Who should become a CCRMP?
Individuals seeking to advance in cybersecurity risk management to positions in which the NIST RMF/FedRAMP is utilised to secure integrated cloud and on-premise systems in the following sectors:
- Systems Integrators
- Federal Civilian, DoD, and Intelligence Communities
- Critical Infrastructure Protection
- Financial Services
- HIPAA
- And More
What are the eligibility requirements for CCRMP certification?
Eligibility for the CCRMP Certification
To receive the CCRMP certification, applicants must:- Demonstrate competency with the CCRMP Common Body of Practise by producing specified NIST RMF/FedRAMP deliverables.
- Have five years of relevant technical experience or substitute a bachelor's degree for two years of relevant experience.
Demonstration of CCRMP CBP Competencies
To demonstrate mastery of the CCRMP CBP, applicants produce the deliverables by:- Satisfactorily completing an MCI-approved cybersecurity/cloud security risk management curriculum, offered through an MCI academic partner.
Or - Submitting a portfolio of project deliverables that demonstrates the mastery of CBP competencies.
For details, please review the CCRMP Policies and Procedures ›
Which courses can help me earn CCRMP certification?
Mission Critical Institute offers a five-course learning pathway to help you earn your CCRMP certification. The courses must be take in this order:
- Course 1: Online Cloud Security Risk Management Policy and Methods Review
- Course 2: Online Cloud Security Risk Management Methodology
- Course 3: Online Cloud Security Risk Management Practicum I
- Course 4: Online Cloud Security Risk Management Practicum II
- Course 5: Online Cloud Security Vulnerability Management
What is the Mission Critical Institute?
The Mission Critical Institute advances cybersecurity careers and thought leadership by developing career-focused cybersecurity education and training programs for use by universities and cybersecurity employers. In addition, MCI provides strategic cybersecurity consulting services to employers and higher education institutions.
What is the NIST RMP and FedRAMP?
The NIST Risk Management Framework (RMF) and the Federal Risk and Authorisation Management Program (FedRAMP) are the de facto standards utilised for cloud security risk management in the U.S. today. To address accelerating cyber staffing shortages, Mission Critical Institute (MCI) established the CCRMP to provide employers and candidates a performance-based cloud security certification.
