Online Cloud Security Risk Management Practicum II

Level: Intermediate

Become a Job-Ready Certified Cloud Risk Management Professional (CCRMP). To prevent the $2.1T in projected cyber breaches, employers need Certified Cloud Risk Management Professionals who have demonstrated they can implement the NIST Risk Management Framework and FedRAMP. The NIST Risk Management Framework (RMF) and the Federal Risk and authorisation Management Program (FedRAMP) are the de facto standards utilised for cloud security risk management in the U.S. today.

To address accelerating cyber staffing shortages, Mission Critical Institute (MCI) established the CCRMP to provide employers and candidates a performance-based cloud security certification.

As an MCI authorised training partner, Learning Tree can help you earn the CCRMP through five courses that ensure you acquire hands-on project experience in implementing the NIST RMF and FedRAMP.

This is the fourth of five courses that help you earn CCRMP certification.

Online Cloud Security Risk Management Practicum II

Key Features of this Cloud Security Risk Management Practicum II Training:

  • 100% hands-on projects — no exam
  • Validation you are NIST RMF/FedRAMP job-ready
  • Certified NIST RMF/FedRAMP practitioner instructors
  • NIST RMF/FedRAMP project experience employers seek
  • Recognition of curriculum by Department of Homeland Security
  • Produce NIST RMF deliverables Steps 4-6 to demonstrate CCRMP competencies

You Will Learn How To:

  • Analyse and develop a plan to assess security controls
  • Analyse and develop a Security Assessment Plan (SAP) for assessing required security controls
  • Complete a Security Controls Assessment (SCA) as part of NIST RMF Step 4
  • Complete a Security Assessment report (SAR) based on the SCA
  • Identify remediation options as part of the development of a Plan of Action and Milestones (POA&M)
  • Develop Authorisation to Operate (ATO) package
  • Review the ATO package to make determination and authorisation of the information system from the point-of-view of the Authorising Official (AO) as part of NIST RMF Step 5
  • Determine the impact of system changes and apply the Information Security Continuous Monitoring (ISCM) strategy as part of NIST Step 6
  • Conduct the decommission of a system as part of NIST Step 6

Choose the CCRMP Training Solution That Best Fits Your Individual Needs or Organisational Goals

ONLINE, INSTRUCTOR-LED

Online Instruction + Live Seminars

  • 8 weeks of "anywhere anytime" online instruction plus 4 live, online seminars
  • Earn academic credits for your accredited cloud security degree
  • Complete your 100% hands-on CCRMP certification
  • Tuition can be paid later by invoice -OR- at the time of checkout by credit card
View Details & Schedule ›

Standard £2495

GET STARTED

PRODUCT #2098

TRAINING AT YOUR SITE

Team Training

  • Bring this or any training to your organisation
  • Full - scale program development
  • Delivered when, where, and how you want it
  • Blended learning models
  • Tailored content
  • Expert team coaching

Contact Us for Team Pricing

GET STARTED

Save More on Training with Learning Tree Training Vouchers!

Our flexible, easy-to-redeem training vouchers are available to any employee within your organisation. For details, please call 0800 282 353 or chat live.

Online Instruction + Live Seminars

Guaranteed to Run

When you see the "Guaranteed to Run" icon next to a course event, you can rest assured that your course event — date, time, location — will run. Guaranteed.

Cloud Security Risk Management Practicum II Course Information

  • Cloud Security and Rish Management Course Description

    In this virtual practicum, students continue to utilise the NIST Risk Management Framework/ FedRAMP for risk management of the integrated enterprise/cloud system. They demonstrate capabilities to evaluate system security and analyse system assessment reports to make recommendations for a Plan of Action & Milestones (POA&M), as well as to comply with Authorisation to Operate (ATO) package requirements and develop an Information Security Continuous Monitoring (ISCM) strategy.

  • Course Deliverables

    • Security Assessment Plan
    • Security Assessment Report
    • Security Authorisation Package
    • POA&M
    • ISCM Strategy
    • System Decommissioning
    • Recommendations based on completed assessment and authorisation project for the enterprise/cloud system
  • Prerequisites

    Attendees must take the five courses in the CCRMP certification course series in order. Before attending this course, attendees must first successfully complete the following courses:

  • Course Schedule

    The flexible, online 8-week course schedule enables you to collaborate with your instructor and fellow students to acquire the cloud security risk management expertise employers seek.

    Asynchronous Threaded Discussions
    Each week’s discussion threads focus on a specific cloud security risk management concept. You can participate in these discussions anytime, anywhere as you interact with your instructor and fellow students online.

    Four Live Virtual Seminars
    At 10 a.m. ET on alternate Saturdays you will participate in live-online interactive sessions led by your expert, practitioner instructor. Recordings of each session will be available to you.

    Virtual Office Hours
    To further enhance your learning experience, you may communicate with your instructor during weekly virtual office hours.

  • Course Materials

    • Broad, J. (2013). Risk Management Framework: A Lab-Based Approach to Securing Information Systems. Imprint: Syngress.
      E-Book ISBN: 9780124047235
      Print Book ISBN: 9781597499958
      Cost: $50.00 USD
       
    • NIST RMF Practicum II Lab access and Lab Manual (Purchase through MCI)
       
    • The course also contains links to a Course Webliography for required readings.
  • Coursework

    Students will work with their NIST RMF/FedRAMP practitioner instructor to produce NIST RMF/FedRAMP projects by participating in weekly virtual discussions, as well as completing weekly assignments and project reports. They will attend bi-weekly, live virtual seminars led by their instructor.

  • Software/Hardware Required

    • Access to Microsoft Office, including Word, Excel, and a PDF reader.
    • Access to high-speed internet connection.
    • A headset with microphone is recommended; using built-in speakers/microphone causes echo issues. Headsets give participants complete interaction with the instructor and other students.

Cloud Security Risk Management Practicum II Course Outline

  • Assess Security Controls

    • Analyse current SSP
  • Develop a Security Assessment Plan (SAP)

    • Elements for assessing required security controls
    • Plan analysis
  • Complete a Security Controls Assessment (SCA)

    • Use the lab and test case scenario
  • Complete a Security Assessment Report (SAR)

    • Use the SCA to complete the SAR
  • Develop a Plan of Action and Milestones (POA&M)

    • Identify remediation options
    • Create the POA&M
  • Develop Authorisation to Operate (ATO) Package

    • Complete package compilation
  • Review of the ATO Package

    • Determination and authorisation of the information system from the point-of-view of the Authorising Official (AO)
  • Apply the Information Security Continuous Monitoring (ISCM) Strategy

    • Determine impact of system changes
    • Review inherited controls
    • Tailoring controls
  • Conduct the Decommission of a System

    • Media remediation and other aspects of system decommission

Team Training

Cloud Security Risk Management Practicum II FAQs

  • Who should become a CCRMP?

    Individuals seeking to advance in cybersecurity risk management to positions in which the NIST RMF/FedRAMP is utilised to secure integrated cloud and on-premise systems in the following sectors:

    • Systems Integrators
    • Federal Civilian, DoD, and Intelligence Communities
    • Critical Infrastructure Protection
    • Financial Services
    • HIPAA
    • And More
  • What are the eligibility requirements for CCRMP certification?

    Eligibility for the CCRMP Certification
    To receive the CCRMP certification, applicants must:

    • Demonstrate competency with the CCRMP Common Body of Practise by producing specified NIST RMF/FedRAMP deliverables.
    • Have five years of relevant technical experience or substitute a bachelor's degree for two years of relevant experience.

    Demonstration of CCRMP CBP Competencies
    To demonstrate mastery of the CCRMP CBP, applicants produce the deliverables by:

    • Satisfactorily completing an MCI-approved cybersecurity/cloud security risk management curriculum, offered through an MCI academic partner.
      Or
    • Submitting a portfolio of project deliverables that demonstrates the mastery of CBP competencies.

      For details, please review the CCRMP Policies and Procedures ›
  • Which courses can help me earn CCRMP certification?

    Mission Critical Institute offers a five-course learning pathway to help you earn your CCRMP certification. The courses must be take in this order:

  • What is the Mission Critical Institute?

    The Mission Critical Institute advances cybersecurity careers and thought leadership by developing career-focused cybersecurity education and training programs for use by universities and cybersecurity employers. In addition, MCI provides strategic cybersecurity consulting services to employers and higher education institutions.

  • What is the NIST RMP and FedRAMP?

    The NIST Risk Management Framework (RMF) and the Federal Risk and Authorisation Management Program (FedRAMP) are the de facto standards utilised for cloud security risk management in the U.S. today. To address accelerating cyber staffing shortages, Mission Critical Institute (MCI) established the CCRMP to provide employers and candidates a performance-based cloud security certification.

call 0800 282 353
chat Live Chat




Preferred method of contact:
Chat Now

Please Choose a Language

Canada - English

Canada - Français