NIST Cybersecurity Framework (NCSF) Practitioner

Prerequisites:

Individuals should hold a valid NIST Cybersecurity Foundation Certification or have equivalent knowledge.

Target Audience:

This course is designed for IT and Business professionals who will play an active role in the design and management of an NCSF program. 

Course Objectives:

The NIST CSF Foundation training course outlines the challenges surrounding critical infrastructure sector security and explains how implementing a security program based on the NIST Cybersecurity Framework can help organizations mitigate these issues.

Course Outine:

CHAPTER 1: COURSE OVERVIEW

• Reviews at a high level each chapter of the course

CHAPTER 2: FRAMING THE PROBLEM

• Reviews the main business and technical issues that we will address through the course.

CHAPTER 3: THE CONTROLS FACTORY MODEL

• Introduces the concept of a Controls factory model and the three areas of focus, the Engineering Center, the Technology Center, and the Business Center.

CHAPTER 4: THE THREATS AND VULNERABILITIES

• Provides an overview of cyberattacks (using the Cyber Attack Chain Model), discusses the top 15 attacks of 2015 and 2016, and the most common technical and business vulnerabilities.

CHAPTER 5: THE ASSETS AND IDENTITIES

• Provides a detailed discussion of asset families, key architecture diagrams, an analysis of business and technical roles, and a discussion of governance and risk assessment.

CHAPTER 6: THE CONTROLS FRAMEWORK

• Provides a detailed analysis of the controls framework based on the NIST Cybersecurity Framework.
• Includes the five core functions (Identify, Protect, Detect, Respond and Recover).

CHAPTER 7: THE TECHNOLOGY CONTROLS

• Provides a detailed analysis of the technical controls based on the Center for Internet Security 20 Critical Security Controls.
• Includes the controls objective, controls design, controls details, and a diagram for each control.

CHAPTER 8: THE SECURITY OPERATIONS CENTER (SOC)

• Provides a detailed analysis of Information Security Continuous Monitoring (ISCM) purpose and capabilities.
• Includes an analysis of people, process, technology, and services provided by a Security Operations Center.

CHAPTER 9: TECHNICAL PROGRAM TESTING AND ASSURANCE

• Provides a high-level analysis of technology testing capabilities based on the PCI Data Security Standard (DSS).
• The testing capabilities include all 12 Requirements of the standard.

CHAPTER 10: THE BUSINESS CONTROLS

• Provides a high-level analysis of the business controls based on the ISO 27002:2013 Code of Practice.
• Includes the controls clauses, objective, and implementation overview.
• The business controls are in support of ISO 27001 Information Security Management System (ISMS).

CHAPTER 11: WORKFORCE DEVELOPMENT

• Provides a review of cybersecurity workforce demands and workforce standards based on the NICE Cybersecurity Workforce Framework (NCWF).

CHAPTER 12: THE CYBER RISK PROGRAM

• Provides a review of the AICPA Proposed Description Criteria for Cybersecurity Risk Management. Covers the 9 Description Criteria Categories and the 31 Description Criteria.

CHAPTER 13: CYBERSECURITY PROGRAM ASSESSMENT

• Provides a detailed review of the key steps organizations can use for conducting a Cybersecurity Program Assessment.
• Assessment results include a technical scorecard (based on the 20 critical controls), an executive report, a gap analysis, and an implementation roadmap.

CHAPTER 14: CYBER-RISK PROGRAM ASSESSMENT

• Provides a review of the Cyber Risk Management Program based on the five Core Functions of the NIST Cybersecurity Framework.
• This chapter includes a resource guide by the Conference of State Bank Supervisors (CSBS), ’Cybersecurity 101 – A Resource Guide for Bank Executives’.
• Results include a sample business scorecard, executive report, gap analysis, and an implementation roadmap.