Security Controls Assessment Workshop

Issued by BAI Information Security

Earners of the Security Controls Assessment Workshop badge have an in-depth understanding of Step 4 of the Risk Management Framework, Assess Security Controls. Learners understand how security controls assessors (SCAs) perform the assessment of the security controls and identify residual risk to the federal information system.

Type Learning
Level Intermediate
Time Days
Cost Paid

Additional Details

Skills

Earning Criteria

Complete the Security Controls Assessment Workshop Training

Standards

NIST SP 800-53 Rev. 5, "Security and Privacy Controls for Information Systems and Organizations"

This publication provides a catalog of security and privacy controls for information systems and organizations to protect organizational operations and assets, individuals, other organizations, and the Nation from a diverse set of threats and risks, including hostile attacks, human errors, natural disasters, and foreign intelligence entities.

NIST SP 800-37 Rev. 2, "Risk Management Framework for Information Systems and Organizations: A System Life Cycle Approach for Security and Privacy"

This publication describes the Risk Management Framework (RMF) and provides guidelines for applying the RMF to information systems and organizations.

NIST SP 800-53A R5, Assessing Security and Privacy Controls in Information Systems and Organizations"

This publication provides a methodology and set of procedures for conducting assessments of security and privacy controls employed within systems and organizations within an effective risk management framework. The assessment procedures, are consistent with the security and privacy controls in NIST Special Publication 800-53, Revision 5.