This unit discusses the tasks associated with implementing security controls for an information system as well as describing the information for documentation. Upon completion of this unit, participants will be able to allocate the appropriate security controls for an information system and implement the security control for an information system. In addition, participants will be able to describe an information system in a functional manner appropriate for documentation in a security plan. Implementation of a security control consists of the following two tasks: Task 3-1: Security Control Implementation Task 3-2: Security Control Documentation
What is the Risk Management Framework?
This course introduces the Department of Defense (DoD) Risk Management Framework (RMF). This course prepares participants to take the CAP Exam which consists of 125 multiple choice questions and covers the following domains: