NIST Cybersecurity Framework 2.0 (CSF)

The Cybersecurity Framework provides a policy framework of computer security guidance for how public and private sector organizations in the United States and around the world can assess and improve their ability to prevent, detect, and respond to cyber attacks. The framework has been translated to many languages, and is used by the governments of Japan and Israel, among others. It is now the go-to playbook for countless organizations for building a robust data protection strategy. It’s structured along six core functions — Govern, Identify, Protect, Detect, Respond and Recover — each of which captures and curates the essential goals and actions that should be prioritized across the cybersecurity lifecycle.

The CSF helps make sense of what to do before, during, and after an incident.

Become a NIST CSF 2.0 Lead Implementer

The Certified NIST CSF 2.0 LI certification certifies your ability to implement the formal structure, governance, and policy of a robust cybersecurity framework following internationally recognized and respected NIST best practices and standards. 

This 3-day NIST CSF 2.0 workshop provides thorough coverage of the Framework, as well as setting out advice on the implementation of cybersecurity initiative. The purpose of the course is to:

• Describe the principles and processes of cybersecurity governance and management;
• Provide thorough coverage of the recommendations of the NIST CSF 2.0;
• Give practical guidance on designing a suitable framework for the organization, and how to leverage ISO 27110 to integrate NIST CSF recommendations into a comprehensive ISO 27001 ISMS;
• Give practical advice on implementing cybersecurity management;
• Prepare you for your NIST CSF certification exam required for Certified NIST CSF 2.0 Lead Implementer professional credentialing.
• Establish a firm program starting point by using the NIST CSF 2.0 to build out the initial cybersecurity management core policy.

Register for a class (in-person or virtual) and get started today!

Class details

• Duration: 3 days, 8:30 - 4:30
• CPE Credit: 24
• Materials included with live instructor-led training:
  • Class manual (complete hard copy of class presentation)
  • 14 days of unlimited access to online practice exams for exam #CSF101
  • 1 attempt for the online certification exam #CSF101
  • Current-year membership in the CIS Body of Certified Professionals
•  
• Professional Certification: This course fulfills all prerequisite training requirements for certification exam #CSF101 for professional certification as Certified NIST CSF Lead Implementer.
• Certificate of Achievement included with class: Upon course completion, we will provide you with an online digital achievement certificate for 24 continuing professional education (CPE) credits that can be used to fulfill requirements for maintaining a variety of professional credentials for fraud examination, accounting, auditing, and information security.
• Recommended prerequisite training: None
  
• Catering:
  
  • Morning refreshments and snack
  • Lunch
  • Afternoon refreshments
• Hotel and/or Travel: Not included

To properly implement and manage cybersecurity based on the NIST CSF, the U.S. Department of Homeland Security recommends involving a cross-functional team representing business, operations, security, information technology, and maintenance areas, including those responsible for:

• IT Policy and Governance (e.g., Chief Information Security Officer)
• Business Operations (e.g., Operations Manager)
• IT Security Planning and Management (e.g., Director of Information Technology)
• Business Continuity and Disaster Recovery Planning (e.g., BC/DR Manager)
• IT Infrastructure (e.g., Network/System Administrator)
• Risk Management (e.g., Enterprise/Operations Risk Manager)
• IT Operations (e.g., Configuration/Change Managers)
• Procurement and Vendor Management (e.g., Contracts and Legal Support Managers)

To properly implement and manage cybersecurity based on the NIST CSF, the U.S. Department of Homeland Security recommends involving a cross-functional team representing business, operations, security, information technology, and maintenance areas, including those responsible for:

• IT Policy and Governance (e.g., Chief Information Security Officer)
• Business Operations (e.g., Operations Manager)
• IT Security Planning and Management (e.g., Director of Information Technology)
• Business Continuity and Disaster Recovery Planning (e.g., BC/DR Manager)
• IT Infrastructure (e.g., Network/System Administrator)
• Risk Management (e.g., Enterprise/Operations Risk Manager)
• IT Operations (e.g., Configuration/Change Managers)
• Procurement and Vendor Management (e.g., Contracts and Legal Support Managers)

Certified CSF 2.0 Lead Implementer Content Outline:

• Framework Core Functions
  1. Govern
  2. Identify
  3. Protect
  4. Detect
  5. Respond
  6. Recover
• Framework Implementation Tiers (Cyber Security Risk Management)
• Framework Profiles
• Converging the CSF Framework into an ISO 27001 Information Security Management System
• Using the NIST CSF for security audits, compliance, and communication

Establish a firm program starting point by NISTS's CSF 2.0 to build out the initial cybersecurity component of an overall Information Security Policy core policy. Throughout the class, our expert instructor will convert NIST CSF concepts and requirements into a real NIST CSF-conforming cybersecurity policy.

Our simple guarantee to you.

Preparing for Certified Information Security's professional certification exam #CSF101 is serious business. This is where we can help. If you first successfully complete:

• All prerequisite course training; and
• All CSF101 online practice exams

Certified Information Security guarantees your success in passing CIS exam #CSF101.

If you do not pass exam #CSF101 on your first attempt after completion of your required course and practice exams, Certified Information Security will allow you to re-test at no additional charge until you successfully pass your certification exam.

It’s convenient!

Certified Information Security provides the training and credentialing you need to become recognized as an authority in establishing and managing a world-class cybersecurity capability leveraging the NIST Cybersecurity Framework 2.0.  You choose the method of delivery: online through our secure website, or in-person at a publicly available course or privately at your facility.  We take care of the rest – from administration, to record keeping, to providing certificates of completion and certification.

Online students have the additional convenience of taking courses whenever they want without the need to travel or disrupt their busy schedules. Our program allows users to start and stop without losing their place or data.  Learning and certifying expertise has never been so easy!

How to get started - two alternatives 

1. If your employer is paying for your training and certification, we recommend purchasing a complete NIST CSF 2.0 Lead Implementer certification package voucher that includes all required resources, including membership in the CIS Body of Certified Professionals, all required training programs, all recommended practice exams, and the required certification exam. This allows your employer to purchase and pay all of your necessary resources at once, while still giving you flexibility of when to use your training, practice exams, and certification exams later.
   
   

1. "Pay-as-you-go" by purchasing your membership in the CIS Body of Certified Professionals, training, recommended practice exams, and the certification exams as you need them. Start by purchasing training, and then purchase practice exams when you are ready. After you complete your practice exams, you then purchase your certification exam.

A breakdown of the costs are as follows: 

1. Required CIS Membership Application Fee & Membership Dues: $100.00 Learn more

2. Required Training

3. Optional Online Practice Exams for exam #CSF101: $75.00 Learn more

4. Required Online Certification Exam #CSF: $100.00 Learn more