NIST Practitioner

Powered By APMG Accredited NIST Cybersecurity Professional (NCSP) Curriculum.

In response to the accelerating set of security risks and threats to critical infrastructure sectors, the US Government’s National Institute for Standards and Technology (NIST) was directed to create a cybersecurity framework (CSF) for public and private organizations to use to assess their security practices and controls and to support continual improvement. The NIST cybersecurity framework (CSF) was published in 2014 and critical infrastructure sectors are expected to adopt these practices no later than 2022.

This APMG accredited training program is targeted at IT and Cybersecurity professionals looking to become certified on how to operationalize the NIST Cybersecurity Framework (NCSF) across an enterprise and its supply chain. The NCSF Practitioner program teaches the knowledge to prepare for the NCSF Practitioner exam plus the skills and abilities to design, build, test, manage and improve a cybersecurity program based on the NCSF.  

What You Will Accomplish

You will:

  • Learn how the NCSF helps you identify, assess, and manage cybersecurity risk
  • Learn to develop a roadmap and scorecard for assessing and improving your cybersecurity risk management approach
  • Develop engineering, technology, and business centers to implement the FasTrack Model
  • Prioritize investments to maximize positive impact
  • Build cybersecurity and cyber risk scorecards and roadmaps
  • Be able to answer the question – are we secure?

Who Should Attend

Risk Managers, Security Managers, CISOs, all IT staff with security management responsibilities, business relationship managers, business leadership with responsibility for security practices and assurance.

Course Length: 4 days

Course Outline

  1. Course Introduction
    1. Course Organization
    2. Setting the Stage
  2. Digital Transformation
    1. DX as a Practitioner
    2. DX in the Context of Cybersecurity
    3. Cybersecurity as a DX Catalyst
  3. Threat Landscape
    1. Threat Actors: Agile & Creative
    2. Attacks
    3. Challenges
    4. Organizational Response to Threat Landscape
    5. Absolute Prevention Not Possible
  4. The Controls
    1. Initiation & Basic
    2. Foundation
    3. Organizational & Recovery
  5. Adopt & Adapt
    1. The Context of Adopt & Adapt
    2. Cybersecurity & Culture
    3. Where We Are?
  6. Adaptive Way of Working
    1. Introduction to Adaptive Way to Work
    2. How to Get Started
  7. FastTrack
    1. Rapid Adoption
    2. Rapid Adaptation
  8. CIIS as a Practice
    1. Ongoing Practice of Cybersecurity
    2. NIST 7-step Improvement
    3. Cybersecurity Maturity Model Certification (CMMC)
    4. Integrate Cybersecurity

Course Summary