Boot Camp

DoD Risk Management Framework (RMF) Boot Camp

Infosec’s Risk Management Framework (RMF) Boot Camp is a four-day course in which you delve into the IT system authorization process and gain an understanding of the Risk Management Framework.

4.7 (187 ratings)

Everything you need to earn your certification

  • 1-Year access to all boot camp video replays and materials
  • 100% Satisfaction Guarantee
  • Free annual Infosec Skills subscription ($299 value!)
  • Knowledge Transfer Guarantee
  • Pre-study learning path
Wistia video thumbnail

What you'll learn

Training overview

Infosec offers the most in-depth course available for students looking to learn about the Risk Management Framework for information technology. Risk Management Framework (RMF) describes the process for identifying, implementing, assessing and managing cybersecurity capabilities and services, expressed as security controls and authorizing the operation of information technology systems.

RMF brings a risk-based approach to the implementation of cybersecurity, supports cybersecurity integration early and throughout the system life cycle, promotes reciprocity to the maximum extent possible and stresses continuous monitoring. RMF replaces the DoD Information Assurance Certification and Accreditation Process (DIACAP) and adopts the term cybersecurity in place of information assurance.


  • Day 1
    • Legal and regulatory organizations

      • White House (Executive Orders)
      • NIST (National Institute of Standards and Technology)
      • OMB (Office of Management and Budget)
      • CNSS (Committee of National Security Systems)
  • Day 2
    • Laws, policies and regulations

      • Privacy Act
      • Computer Fraud & Abuse Act (CFAA)
      • Electronic Communications Privacy Act (ECPA)
      • Computer Security Act
      • Information Technology Management Reform Act
      • Clinger-Cohen Act
      • Federal Information Security Management Act (FISMA)
      • Federal Information Security Modernization Act (FISMA)
      • Other laws (GLBA, SOX, HIPAA, HITECH)
  • Day 3
    • Integrated organizational-wide risk management

      • Categories of business risk
      • Overview of risk management
      • Risk management objectives
      • Potential risk impacts
      • Potential security impacts
      • Risk assessment process
      • Risk assessment steps

      System development life cycle

  • Day 4
    • RMF key roles and responsibilities

      RMF phase overview

      • Security authorization process
      • Prepare
      • Categorization
      • Implementation
      • Assessment
      • Authorization
      • Monitoring


Training schedule

Guaranteed results

Our boot camp guarantees

100% Satisfaction Guarantee

If you’re not 100% satisfied with your training at the end of the first day, you may withdraw and enroll in a different online or in-person course.

Knowledge Transfer Guarantee

If an employee leaves within three months of obtaining certification, Infosec will train a different employee at the same organization tuition-free for up to one year.

Unlock team training discounts

If you’re like many of our clients, employee certification is more than a goal — it’s a business requirement. Connect with our team to learn more about our training discounts.

Enroll in a boot camp

  • February 13, 2023 - February 16, 2023

    Online only

  • July 11, 2023 - July 14, 2023

    Dulles, Virginia | Available online

  • September 25, 2023 - September 28, 2023

    Online only

  • November 13, 2023 - November 16, 2023

    Online only