This lesson discusses the tasks required to select the security controls for an information system and create a continuous monitoring strategy. Upon completing this unit, participants will be able to identify a systems common controls and select the appropriate baseline controls for an information system. In addition, participants will be able to tailor security controls for a specific system, supplement the baseline and tailored controls as well as develop and/or support a continuous monitoring strategy for an information system.
What is the Risk Management Framework?
This course introduces the Department of Defense (DoD) Risk Management Framework (RMF). This course prepares participants to take the CAP Exam which consists of 125 multiple choice questions and covers the following domains: