RMF for DoD + eMASS eSSENTIALS

RMF for DoD IT Fundamentals (Day 1) provides an overview of information security and risk management and proceeds to a high-level view of RMF for DoD IT. Discussion is centered on RMF for DoD IT policies, roles and responsibilities, along with key publications from DoD, the National Institute of Standards and Technology (NIST) and the Committee on National Security Systems (CNSS). The class includes high-level discussion of the RMF for DoD IT “life cycle”, including security authorization (aka. certification and accreditation), along with the RMF documentation package and security controls.

RMF for DoD IT In-Depth (Days 2-4) expands on the fundamentals topics at a level of detail that enables practitioners to immediately apply the training to their daily work. Each student will gain an in depth knowledge of the relevant DoD, NIST and CNSS publications along with the practical guidance needed to implement them in the work environment. Each phase of the seven step RMF life cycle is covered in detail, as is each component of the corresponding documentation package. NIST Special Publication (SP) 800-53 Security Controls, along with corresponding assessment procedures, are covered in detail, as are CNSS Instruction 1253 “enhancements”. Individual and group activities are used to reinforce key concepts.

eMASS eSSENTIALS (Day 5)

The Enterprise Mission Assurance Support Service, or eMASS, is a web-based Government off-the-shelf (GOTS) solution that automates a broad range of services for comprehensive, fully-integrated cybersecurity management, including controls scorecard measurement, dashboard reporting, and the generation of Risk Management Framework (RMF) package reports.  Nearly all DoD organizations have “standardized” on eMASS as the data repository for RMF Assessment and Authorization.

eMASS eSSENTIALS ™ provides “how to” guidance for The Enterprise Mission Assurance Support Service, or eMASS, a web-based Government off-the-shelf (GOTS) solution that automates a broad range of services supporting RMF in the DoD environment. Training includes the hands-on eMASS eXPERIENCE Simulator™.

The eMASS eXPERIENCE Simulator™ was created to provide an authentic eMASS user experience without the consequences of entering incorrect data in a live eMASS system. The interface and user experience mirror that of eMASS and the simulation environment is maintained to reflect all updates to the live version of eMASS as supported by DISA.

*The eMASS eXPERIENCE Simulator™ does not require a DoD Common Access Card (CAC).