• Skip to main content
  • Skip to primary sidebar

ConvoCourses

Cyber Security Compliance and IT Jobs

  • Cyber Security Training
  • about me.
  • Information Assurance Jobs

implement

What is Risk Management Framework NIST 800 37

June 20, 2016 by Bruce Brown Leave a Comment

Risk Management is being aware of and taking actions to prepare for probable unfavorable outcomes.

Risk Management Framework is a process the implement risk management in an organization.

There are (6) steps to the RMF:
1. Categorize
2. Select
3. Implement
4. Assess
5. Authorize
6. Continuous Monitoring

More on the Risk Management Framework Steps here:
http://diarmfs.com/risk-management-framework-steps/

Filed Under: certification & accreditation, DIACAP, DIARMF, Information Assurance, Risk Management For DoD IT Tagged With: authorize, categorization, Continuous Monitoring, implement, nist sp 800-137, nist sp 800-37, nist sp 800-53, risk management, rmf, select

IASE to Begin GovDelivery for STIG Update Notices

March 14, 2016 by Bruce Brown Leave a Comment

STIG Update subscribers,

We’ve recently switched to GovDelivery to manage and send out our STIG Update notices.

There will be a Welcome Email sent shortly from GovDelivery, inviting you to update your subscription profile. If you do not receive the Welcome Email, please check your Spam or Bulk E-Mail. Our email may have been blocked and redirected by accident. To avoid this in the future, please add ‘subscriptions@disa.mil’ and ‘disa@public.govdelivery.com’  to your ‘Approved  Senders’ list by following the below steps:

Outlook 2010

– From the ‘Home’ tab, select ‘Junk -> Junk E-Mail Options’

– Select the ‘Safe Sender’ tab in the ‘Junk E-Mail Options’ window and  Add ‘subscriptions@disa.mil’ and ‘disa@public.govdelivery.com’

To update your account password, subscribe to additional topics or remove your email address from the list, please visit the link to the Subscriber Preferences page found in the Welcome Email.

If you DO NOT receive the Welcome Email, you can still add your email on the Subscription page:

https://public.govdelivery.com/accounts/USDISA/subscriber/new?topic_id=USDISA_181

Very respectfully,

– The IASE Web Team

Filed Under: diarmf - implement, STIGS Tagged With: disa, implement, STIG

Announcement of the Adobe ColdFusion 11 STIG Version 1

December 16, 2015 by Bruce Brown Leave a Comment

DISA has released the Adobe ColdFusion 11 STIG Version 1. The requirements of this STIG become effective immediately. The STIG is available on IASE at:

http://iase.disa.mil/stigs/app-security/app-servers/Pages/ColdFusion.aspx

Filed Under: STIGS Tagged With: adobe, coldfusion, implement, implementation, STIG

DISA has released the Palo Alto Networks STIG Version 1

December 15, 2015 by Bruce Brown Leave a Comment

DISA has released the Palo Alto Networks STIG Version 1.

The requirements of the STIG become effective immediately.  The STIG is available at http://iase.disa.mil/stigs/net_perimeter/network-infrastructure/Pages/firewall.aspx.

Filed Under: STIGS Tagged With: firewall, implement, palo alto, palo alto network, STIG

McAfee VirusScan Enterprise for Linux (VSEL) 1.9x/2.0x STIGs, V1R1

December 11, 2015 by Bruce Brown Leave a Comment

DISA has released the McAfee VirusScan Enterprise for Linux (VSEL) 1.9x/2.0x STIGs Version 1.

The requirements of the STIGs become effective immediately.  The STIGs are available on IASE at http://iase.disa.mil/stigs/app-security/antivirus/Pages/antivirus.aspx.

Filed Under: STIGS Tagged With: implement, implementation, Linux, mcafee, STIG, virusscan, vsel

Oracle 12c Database STIG Version 1

October 22, 2015 by Bruce Brown Leave a Comment

DISA has released the Oracle 12c Database STIG Version 1.  The requirements of this STIG become effective immediately.  The STIG is available on IASE
at: http://iase.disa.mil/stigs/app-security/database/Pages/oracle.aspx.

Filed Under: Risk Management For DoD IT Tagged With: diarmf - implement, implement, Oracle, STIG

  • Go to page 1
  • Go to page 2
  • Go to page 3
  • Go to Next Page »

Primary Sidebar

search


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book


This book is an overview of how the NIST SP 800-37 risk management framework works from the perspective of an information system security officer (ISSO).

also available on Amazon!

View Book

NIST RMF 800-37 templates
Free 800-37 templates

The NIST 800 Template download contains a .doc file template and xls templates for POAMs, Federal, State, cloud based and a legacy template as well as resources where you can find more on NIST 800-37 documents for your use.

View Book

Learn to Make 6 Figures in CyberSecurity

RMF ISSO Foundations Training
RMF ISSO Foundations Training

RMF ISSO Foundations

I was an Information System Security Officer (ISSO) doing Risk Management Framework (NIST SP 800-37) for over a decade. I am a Cybersecurity veteran and I can explain (in plain English) what you DO in the Risk Management Framework process as an ISSO.

View Course

NIST SP 800-37 Presentation
NIST SP 800-37 Presentation

View Course

login

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Recent Posts

  • Convocourses Podcast: Plan of Action and Milestone
  • Start with These IT Certifications (Part 1)
  • How to Tailor Security Controls in NIST 800
  • #cybersecurityjobs are recession proof
  • What IT Certifications for Information Security (part 2) (8140)

Meta

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Recent Comments

  • http://Www.Finance.Ipt.Pw/ on SRG/STIG Applicability Guide and Collection Tool Update
  • Elsa7 on ConvoCourses podcast: Cyber Security day to day activity
  • Tony on STIG Update – DISA has released the Microsoft SQL Server 2016 STIG Version 1
  • horloge on SCAP Compliance Checker SCC)
  • 218 Information assurance Success Criteria – ITSECURITYSURVIVAL.COM on Information Assurance Vulnerability Alert

Tags

8140 8570 ArcSight c&a CISSP convocourses cyber cybersecurity cyber security DIACAP DIARMF diarmf - implement disa DISA STIG dodd 8140 dodd 8140 cyberspace workforce IA implement implementation info assurance information assurance information security ISSO IT it jobs it jobs in usa job jobs Linux mcafee network nist nist risk management framework nist risk management framework 800-37 podcast risk risk assessment risk management risk management framework rmf security STIG stigs unix windows


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book

Copyright © 2023 · Author Pro on Genesis Framework · WordPress · Log in