This book provides an in-depth look at the Risk Management Framework (RMF) and the Certified Authorization Professional (CAP) (c) certification. This edition includes detailed information about the RMF as defined in both NIST SP 800-37 Revision 1 and NIST SP 800-37 Revision 2 as well as the changes to the CAP introduced on October 15th, 2018. Each chapter focuses on a specific portion of the RMF/CAP and ends with questions that will validate understanding of the topic. The book includes links to templates for all of the key ...
Read More
This book provides an in-depth look at the Risk Management Framework (RMF) and the Certified Authorization Professional (CAP) (c) certification. This edition includes detailed information about the RMF as defined in both NIST SP 800-37 Revision 1 and NIST SP 800-37 Revision 2 as well as the changes to the CAP introduced on October 15th, 2018. Each chapter focuses on a specific portion of the RMF/CAP and ends with questions that will validate understanding of the topic. The book includes links to templates for all of the key documents required to successfully process information systems or common control sets through the RMF. By implementing security controls and managing risk with the RMF system owners ensure compliance with FISMA as well as NIST SP 800-171.
Read Less