We may earn an affiliate commission when you visit our partners.
NIST Cybersecurity and Risk Management Frameworks
Stone River eLearning
Stone River eLearning
In the If you are doing business with the US federal government, manage critical infrastructure, or maintain personally identifiable information (PII), you must be compliant with NIST standards.
Read more
In the If you are doing business with the US federal government, manage critical infrastructure, or maintain personally identifiable information (PII), you must be compliant with NIST standards.
Read more
In the If you are doing business with the US federal government, manage critical infrastructure, or maintain personally identifiable information (PII), you must be compliant with NIST standards.
NIST provides the Cybersecurity Framework (CSF) and Risk Management Framework (RMF) to guide organizations on securing their infrastructure, systems, and data. In this course, you will apply the NIST Cybersecurity and Risk Management Frameworks to better protect their infrastructure, detect possible cyber incidents and appropriately respond and recover should they occur. You'll become well-versed in the
This course provides an overview of the NIST Cybersecurity and Risk Management Frameworks and their application. Organizations may require additional industry-specific knowledge and specialized guidance to tailor these frameworks to their unique needs and compliance requirements.
Upon completing the course, participants should have the knowledge and skills necessary to assess, implement, and enhance cybersecurity practices within their organizations using the NIST Cybersecurity and Risk Management Frameworks. They will be equipped to make informed decisions regarding risk management, establish appropriate controls, and respond to cybersecurity incidents in a proactive and efficient manner.
Register for this course and see more details by visiting:
OpenCourser.com/course/v8nysz/nist
What's inside
Learning objectives
- Understand the role of nist in developing cybersecurity frameworks and guidelines and its importance in the field of cybersecurity.
- Comprehend the fundamentals of cybersecurity and the significance of managing risks to protect critical assets and information systems.
- Familiarize themselves with the nist cybersecurity framework (csf) and its five core functions: identify, protect, detect, respond, and recover.
- Apply the csf to assess their organization's cybersecurity posture, identify vulnerabilities, and develop risk management strategies aligned with business obj
- Gain knowledge of the nist special publication 800-53, including its control families, control selection, implementation, and ongoing security assessment and
- Understand the role of nist in developing cybersecurity frameworks and guidelines and its importance in the field of cybersecurity.
- Comprehend the fundamentals of cybersecurity and the significance of managing risks to protect critical assets and information systems.
- Familiarize themselves with the nist cybersecurity framework (csf) and its five core functions: identify, protect, detect, respond, and recover.
- Apply the csf to assess their organization's cybersecurity posture, identify vulnerabilities, and develop risk management strategies aligned with business obj
- Gain knowledge of the nist special publication 800-53, including its control families, control selection, implementation, and ongoing security assessment and
Syllabus
Topic 1:NIST Cybersecurity Overview
Course Overview
NIST Cybersecurity and Publications
NIST Relationships
Read more
Syllabus
Topic 1:NIST Cybersecurity Overview
Course Overview
NIST Cybersecurity and Publications
NIST Relationships
Read more
NIST CSF & RMF Overview
NIST CSF Core, Tiers, and Profiles
The Vocabulary of Risk
NIST Frameworks & Standards Case Study
Topic 2: NIST CSF Identify
NIST Core Review and Identify Function Overview
Inventory of Critical Assets
Business Impact Assessment
Security Policies and Procedures
Topic 3: NIST CSF Protect Function
NIST Core Review and Protect Function Overview
Awareness & Training
Access Control
Protective Technology - Network
Protective Technology - Systems
Data Security and Encryption
Maintenance
Personnel and Physical Security
Topic 4: NIST CSF Detect Function
System Auditing and Logging
Monitoring and Alerting
Assessments
Topic 5: NIST CSF Respond Function
Response Planning
Incident Response Plan Examples
Digital Forensics
Response Training and Testing
Mitigation and Improvements
Topic 6: NIST CSF Recover Function
Continuity of Operations Plan
Backup and Recovery
Virtualization and the Cloud
Topic 7: NIST RMF Preparation
NIST RMF Overview & Preparation
A Risk-Based Approach to Security
The RMF Preparation Step
System Security Plan (SSP)
Topic 8: NIST RMF Categorization
Categorizing Information Systems
Establishing Scope
The RMF Categorize Step
Categorization Risk Analysis
Topic 9: NIST RMF Control Selection
Selecting Security Controls
NIST Control Documents
Setting and Tailoring Control Baselines
Control Allocation and Monitoring
Documentation and Approval
Topic 10: NIST RMF Control Implementation
Security Control Implementation
Common Controls
Documenting Controls
Topic 11: NIST RMF Control Assessment
NIST RMF Assessment Step and Process
Assessment Plan
Conducting the Assessment
Analyzing Assessment Results
Assessment Documentation
Risk Remediation
Topic 12: NIST RMF Authorization
System Authorization
Risk Response
Topic 13: NIST RMF Risk Monitoring
Monitoring Controls Step
Change Management and Configuration Control
System Disposal (EOL)
Good to know
Good to know
Know what's good ,
what to watch for , and
possible dealbreakers
Provides a foundation for understanding cybersecurity frameworks and their practical application
Emphasizes industry best practices and compliance with NIST standards, making it suitable for those working in regulated environments
Taught by instructors with expertise in cybersecurity, ensuring the knowledge is up-to-date and practical
Covers a wide range of topics, from risk assessment to incident response, providing a comprehensive foundation
Requires familiarity with cybersecurity concepts, making it more suitable for those with prior knowledge or experience in the field
While the course covers various industry-specific aspects, it may require additional industry-specific guidance for tailored implementation
Save this course
Save NIST Cybersecurity and Risk Management Frameworks to your list so you can find it easily later:
Save
Save
Activities
Coming soon
We're preparing activities for
NIST Cybersecurity and Risk Management Frameworks.
These are activities you can do either before, during, or after a course.
Career center
Learners who complete NIST Cybersecurity and Risk Management Frameworks will develop knowledge and skills
that may be useful to these careers:
Cybersecurity Lawyer
Cybersecurity Lawyer
A Cybersecurity Lawyer advises clients on cybersecurity law and regulations and represents clients in cybersecurity litigation. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of cybersecurity law. By understanding these frameworks, you will be better prepared to advise clients on cybersecurity law and regulations and represent clients in cybersecurity litigation.
Privacy Manager
Privacy Manager
A Privacy Manager ensures that an organization's operations are in compliance with applicable privacy laws and regulations. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of privacy management. By understanding these frameworks, you will be better prepared to ensure that an organization's cybersecurity operations are in compliance with applicable privacy laws and regulations.
Compliance Manager
Compliance Manager
A Compliance Manager ensures that an organization's operations are in compliance with applicable laws and regulations. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of compliance management. By understanding these frameworks, you will be better prepared to ensure that an organization's cybersecurity operations are in compliance with applicable laws and regulations.
Risk Manager
Risk Manager
A Risk Manager assesses and mitigates risks to an organization's assets and operations. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of risk management. By understanding these frameworks, you will be better prepared to assess and mitigate risks to an organization's cybersecurity posture.
Security Operations Center (SOC) Analyst
Security Operations Center (SOC) Analyst
A Security Operations Center (SOC) Analyst monitors and analyzes security events to identify potential threats and incidents. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of security operations. By understanding these frameworks, you will be better prepared to monitor and analyze security events and make recommendations for mitigation.
Vulnerability Manager
Vulnerability Manager
A Vulnerability Manager identifies and manages vulnerabilities in an organization's computer networks and systems. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of vulnerability management. By understanding these frameworks, you will be better prepared to identify, assess, and prioritize vulnerabilities and make recommendations for remediation.
Incident Responder
Incident Responder
An Incident Responder responds to and investigates cybersecurity incidents. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of incident response. By understanding these frameworks, you will be better prepared to respond to and investigate cybersecurity incidents in a manner that is consistent with industry best practices and regulatory requirements.
Cyber Threat Intelligence Analyst
Cyber Threat Intelligence Analyst
A Cyber Threat Intelligence Analyst monitors and analyzes cyber threats to identify potential risks to an organization. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of cyber threat intelligence. By understanding these frameworks, you will be better prepared to identify and assess cyber threats and make recommendations for mitigation.
Digital Forensics Analyst
Digital Forensics Analyst
A Digital Forensics Analyst investigates cybercrimes and cyberattacks to collect and analyze evidence. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of digital forensics. By understanding these frameworks, you will be better prepared to collect and analyze digital evidence in a manner that is consistent with industry best practices.
Security Engineer
Security Engineer
A Security Engineer implements and maintains security measures to protect an organization's computer networks and systems. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of security engineering. By understanding these frameworks, you will be better prepared to implement and maintain security measures that are effective and efficient.
Chief Information Security Officer (CISO)
Chief Information Security Officer (CISO)
A Chief Information Security Officer (CISO) is responsible for overseeing an organization's cybersecurity program. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of cybersecurity management. By understanding these frameworks, you will be better prepared to lead an organization's cybersecurity program and ensure that it is aligned with the organization's risk tolerance and business objectives.
Security Architect
Security Architect
A Security Architect designs and implements security measures to protect an organization's computer networks and systems. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of security architecture. By understanding these frameworks, you will be better prepared to design and implement security measures that are aligned with an organization's risk tolerance and business objectives.
Cybersecurity Consultant
Cybersecurity Consultant
A Cybersecurity Consultant helps organizations improve their cybersecurity posture by identifying and mitigating risks. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of cybersecurity consulting. By understanding these frameworks, you will be better prepared to advise clients on how to improve their cybersecurity posture and reduce their risk of cyberattacks.
IT Auditor
IT Auditor
An IT Auditor evaluates an organization's information systems and controls to ensure that they are secure and compliant with regulations. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a comprehensive overview of the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of IT auditing. By understanding these frameworks, you will be better prepared to assess the effectiveness of an organization's cybersecurity controls and make recommendations for improvement.
Information Security Analyst
Information Security Analyst
An Information Security Analyst plans and implements security measures to protect an organization's computer networks and systems. This course in NIST Cybersecurity and Risk Management Frameworks may be useful because it provides a deep dive into the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF), which are widely used in the field of information security. By understanding these frameworks, you will be better prepared to identify and mitigate cybersecurity risks, which is a key responsibility of an Information Security Analyst.
For more career information including salaries, visit:
OpenCourser.com/course/v8nysz/nist
Reading list
We've selected nine books
that we think will supplement your
learning. Use these to
develop background knowledge, enrich your coursework, and gain a
deeper understanding of the topics covered in
NIST Cybersecurity and Risk Management Frameworks.
Good choice for supplemental reading for the course, as it provides a detailed overview of the NIST Special Publication 800-53, including its control families, control selection, implementation, and ongoing security assessment.
Is recommended as additional reading for the course, as it covers incident response and computer forensics, two key topics in cybersecurity.
Provides a comprehensive overview of security engineering, including system security, network security, and application security.
Save
Provides insights into the human element of security, including social engineering and phishing attacks.
Save
Provides a practical guide to network security, including coverage of network protocols, security tools, and common attacks.
Provides a comprehensive overview of cryptography and network security, including coverage of encryption, authentication, and network security protocols.
Provides a practical guide to malware analysis, including coverage of malware types, analysis techniques, and tools.
Good choice for those who are new to network security, as it provides a comprehensive overview of the fundamentals.
Good choice for those who are preparing for the CEH certification exam.
For more information about how these books relate to this course, visit:
OpenCourser.com/course/v8nysz/nist
Share
Similar courses
Here are nine courses similar to
NIST Cybersecurity and Risk Management Frameworks.
Security Framework: NIST RMF
OpenCourser.com/course/nxr4um/security
Security Framework: NIST RMF
Most relevant
Implementing the NIST Cybersecurity Framework (CSF)
OpenCourser.com/course/md9mvf/implementing
Implementing the NIST Cybersecurity Framework (CSF)
Most relevant
How To Develop An Information Security Program
OpenCourser.com/course/ncq14v/how
How To Develop An Information Security Program
Most relevant
Cybersecurity Policy for Water and Electricity Infrastructures
OpenCourser.com/course/90a1j5/cybersecurity
Cybersecurity Policy for Water and Electricity...
Most relevant
Dominant Risk Management Standards and Frameworks
OpenCourser.com/course/nzwv6j/dominant
Dominant Risk Management Standards and Frameworks
Most relevant
Cybersecurity Compliance Framework & System Administration
OpenCourser.com/course/u2gt8e/cybersecurity
Cybersecurity Compliance Framework & System Administration
Most relevant
Play It Safe: Manage Security Risks
OpenCourser.com/course/xk9ut0/play
Play It Safe: Manage Security Risks
Most relevant
Data Center Security Management with Microsoft System Center
OpenCourser.com/course/95tstz/data
Data Center Security Management with Microsoft System...
Most relevant
NIST CSF
OpenCourser.com/course/4aq9np/nist
NIST CSF
Most relevant
Effort
22 total hours
Via
Udemy
Instructor
Stone River eLearning
Language
English
Good to know
Provides a foundation for understanding cybersecurity frameworks and their practical application
Emphasizes industry best practices and compliance with NIST standards, making it suitable for those working in regulated environments
Taught by instructors with expertise in cybersecurity, ensuring the knowledge is up-to-date and practical
Covers a wide range of topics, from risk assessment to incident response, providing a comprehensive foundation
Requires familiarity with cybersecurity concepts, making it more suitable for those with prior knowledge or experience in the field
While the course covers various industry-specific aspects, it may require additional industry-specific guidance for tailored implementation
Our mission
OpenCourser helps millions of learners each year. People visit us to learn workspace skills, ace their exams, and nurture their curiosity.
Our extensive catalog contains over 50,000 courses and twice as many books. Browse by search, by topic, or even by career interests. We'll match you to the right resources quickly.
Find this site helpful? Tell a friend about us.
Affiliate disclosure
We're supported by our community of learners. When you purchase or subscribe to courses and programs or purchase books, we may earn a commission from our partners.
Your purchases help us maintain our catalog and keep our servers humming without ads.
Thank you for supporting OpenCourser.
© 2016 - 2024 OpenCourser