• Home
  • NIST Cybersecurity Professional® Foundation

NIST Cybersecurity Professional® Foundation

All prices include the NIST certification exam.

    Upcoming Events

Please contact Deep Creek Center for information on scheduling a course.
Course Length
1 day
Credits Earned
8 PDU credits
Powered By APMG AccreditedNIST Cybersecurity Professional®  Curriculum.
In response to the accelerating set of security risks and threats to critical infrastructure sectors, the US Government’s National Institute for Standards and Technology (NIST) was directed to create a cybersecurity framework (CSF) for public and private organizations to use to assess their security practices and controls and to support continual improvement. The NIST cybersecurity framework (NCSF) was published in 2014 and critical infrastructure sectors are expected to adopt these practices no later than 2022.

This APMG accredited training program is targeted at IT and Cybersecurity professionals looking to become certified on how to adopt the NIST Cybersecurity Framework (NCSF) across an enterprise and its supply chain. The NIST CSF Foundation training course outlines current cybersecurity challenges and explains how organizations who implement a NCSF program can mitigate these challenges.

What You Will Accomplish

  • Learn how the NCSF helps you identify, assess, and manage cybersecurity risk
  • Learn to develop a roadmap for improving your cybersecurity risk management approach
  • Prioritize investments to maximize positive impact
  • Learn how to use the FasTrack model to implement your cybersecurity risk program

Who Should Attend

Risk Managers, Security Managers, CISOs, all IT staff with security management responsibilities, business relationship managers, business leadership with responsibility for security practices and assurance.
Course Introduction 

This course introduces the NIST Cybersecurity Framework (NCSF). The Framework is a risk-based approach to managing cybersecurity risk, and is composed of three parts: the Framework Core, the Framework Implementation Tiers, and the Framework Profiles. Each Framework component reinforces the connection between business drivers and cybersecurity activities.

This course discusses how an organization can use the Framework as a key part of its systematic process for identifying, assessing, and managing cybersecurity risk. The Framework is not designed to replace existing processes; an organization can use its current process and overlay it onto the Framework to determine gaps in its current cybersecurity risk approach and develop a roadmap to improvement.

The class will include lectures, informative supplemental reference materials, quizzes, and tests. 
Body of Knowledge

This course is based on the Framework for Improving Critical Infrastructure Cybersecurity, version 1.0. It was published by the National Institute of Standards & Technology on February 12, 2014.

The NIST Cybersecurity Framework (NIST CSF) provides a policy framework of computer security guidance for how private sector organizations can assess and improve their ability to prevent, detect, and respond to cyber-attacks. It "provides a high level taxonomy of cybersecurity outcomes and a methodology to assess and manage those outcomes." 

Course Outline

    1. Course Introduction
    2. Digital Evolution
    3. Understanding Cyber Risk
    4. NIST Cybersecurity Framework (NIST-CSF) Fundamentals
    5. Core Functions, Categories & Subcategories
    6. Implementing Tiers and Profiles
    7. Beyond the Framework
Onsite program offerings can include a second day NCSF simulation program to help your organization assess your readiness and identify continual improvement areas of focus. Contact us for more information.
Exam: The optional certification exam will be comprised of 100 Blooms level 1 & 2 multiple choice questions.
    Certification is through APMG.
      Students must pass a 90 minute, 100 question closed book multiple choice, examination with a passing score of 70% in order to receive this certification.

      Please contact Deep Creek Center for information.
      It is only a solution if it produces the desired results. 

      Deep Creek is pleased to deliver these programs through DVMS Institute, the official Accredited Training Organization for the NIST Cybersecurity Professional® program.