By attending this 16-hour training course, participants will learn more about the structure of the standard including information security risk assessment, treatment, acceptance, communication and consultation, and monitoring and review. They will also gain basic knowledge related to information security risk management based on other standards such as ISO/IEC 27001 and ISO 31000.
$999.00
By attending this 16-hour training course, participants will learn more about the structure of the standard including information security risk assessment, treatment, acceptance, communication and consultation, and monitoring and review. They will also gain basic knowledge related to information security risk management based on other standards such as ISO/IEC 27001 and ISO 31000.
Captiva Solutions LLC
8201 Corporate Dr Ste 635
Greater Landover, MD 20785
TF: 888.850.9280
Tel: 202.770.2120
Fax: 202.770.2121
Captiva Solutions is your trusted partner for all your IT and cybersecurity concerns. Using cutting-edge technology, adaptive systems, dedicated resources, and the highest levels of skills and expertise, we offer comprehensive IT solutions at competitive rates.
COPYRIGHT © 2023 CAPTIVA SOLUTIONS
Level 1
An organization must demonstrate basic cyber hygiene practices, such as ensuring employees change passwords regularly to protect Federal Contract Information (FCI). FCI is “information, not intended for public release, that is provided by or generated for the Government under a contract to develop or deliver a product or service to the Government.”
Level 2
An organization must have an institutionalized management plan to implement good cyber hygiene practices to safeguard CUI, including all the NIST 800-171 r2 security requirements and processes
Level 3 – Expert.
An organization must have standardized and optimized processes in place and additional enhanced practices that detect and respond to changing tactics, techniques and procedures (TTPs) of advanced persistent threats (APTs).
An APT is an adversary that possesses sophisticated levels of cyber expertise and significant resources to conduct attacks from multiple vectors. Capabilities include having resources to monitor, scan, and process data forensics.
