Study any time, from any device.

NIST Cybersecurity Framework Training Boot Camp

This three-day boot camp teaches you how to employ the NIST Cybersecurity Framework in order to better manage and reduce your organization’s cybersecurity risk.

Learn the NIST Cybersecurity Framework

Boot camp overview

In February 2013, the President of the United States issued Executive Order (EO) 13636, “Improving Critical Infrastructure Cybersecurity.” In response to this mandate, the National Institute of Standards and Technology (NIST) was tasked with development of the Framework for Improving Critical Infrastructure Cybersecurity, more commonly known as the Cybersecurity Framework. Although it was designed specifically for companies that are part of the U.S. critical infrastructure, many other organizations in the private and public sectors, including federal agencies, are using the framework as a helpful tool in managing cybersecurity risks.

This boot camp covers each of the three NIST Cybersecurity Framework components: the framework core, the framework implementation tiers and the framework profiles.

Skill up and get certified, guaranteed

100% Satisfaction Guarantee

If you’re not 100% satisfied with your training at the end of the first day, you may withdraw and enroll in a different Flex Pro or Flex Classroom course.

Knowledge Transfer Guarantee

If an employee leaves within three months of obtaining certification, Infosec will train a different employee at the same organization tuition-free for up to one year.

What's included?

  • Three days of training with an expert instructor
  • Instructor-led walkthroughs and demonstrations
  • 90-day access to course replays (Flex Pro)
  • 100% Satisfaction Guarantee

Course objectives

After attending this NIST Cybersecurity Framework Boot Camp, you will be able to:

  • Implement the NIST Cybersecurity Framework to identify, assess and manage cybersecurity risk
  • Identify connections between business drivers and cybersecurity activities
  • Determine activities that are most important to critical service delivery
  • Prioritize expenditures to maximize the impact of the investment

Award-winning training that you can trust

Rising Star

Partner Award

G2 Crowd Leader

Technical Skills Development Software

Gold Winner

Best Cybersecurity Education Provider

Publisher's Choice

Security Training for Infosec Professionals

Top 20 Company

IT Training

About the NIST Cybersecurity Framework

Executive Order (EO) 13636, “Improving Critical Infrastructure Cybersecurity,” was issued to “enhance the security and resilience of the Nation’s critical infrastructure and to maintain a cyber environment that encourages efficiency, innovation, and economic prosperity while promoting safety, security, business confidentiality, privacy, and civil liberties.”

The order provided a mandate to establish a voluntary common framework for cybersecurity defense, now known as the NIST Cybersecurity Framework.

Learn from experts

We don’t just have great instructors, our instructors have years of industry experience and are recognized as experts. Over the past 15 years, we’ve helped tens of thousands of students learn new skills, get certified and advance their careers.

Why choose Infosec

Your flexible learning experience

Infosec Flex makes expert, live instruction convenient with online and in-person formats tailored to how, when and where you learn best.

Public training boot camps held nationwide

  • Pre-study course materials
  • Live instruction
  • Digital courseware
  • Daily reinforcement materials
  • Catered lunches
  • Infosec community forum access
  • 100% Satisfaction Guarantee
  • Knowledge Transfer Guarantee

Most Popular

Immersive, live-streamed instruction

  • Pre-study course materials
  • Live instruction
  • Digital courseware
  • Daily reinforcement materials
  • Detailed performance reporting
  • Video replays
  • 90-day extended access to materials
  • Infosec community forum access
  • Exam Pass Guarantee
  • 100% Satisfaction Guarantee
  • Knowledge Transfer Guarantee




Tailored team training at your location

  • Pre-study course materials
  • Live, customized instruction at your location
  • Digital courseware
  • Daily reinforcement materials
  • Detailed team performance reporting
  • Video replays
  • 90-day extended access to materials
  • Infosec community forum access
  • Exam Pass Guarantee
  • 100% Satisfaction Guarantee
  • Knowledge Transfer Guarantee

Can’t get away for a week?

Learn the NIST CSF on-demand.

Get the cybersecurity training you need at a pace that fits your schedule with a subscription to Infosec Skills. Includes unlimited access to hundreds of additional on-demand courses — plus cloud-hosted cyber ranges where you can practice and apply knowledge in real-world scenarios — all for just $34 a month!

  • 400+ courses
  • 4 cyber range environments
  • 100+ hands-on labs
  • Certification practice exams
  • 50+ learning paths

You're in good company.

"I’ve taken five boot camps with Infosec and all my instructors have been great."

Jeffrey Coa

Information Security Systems Officer

"Comparing Infosec to other vendors is like comparing apples to oranges. My instructor was hands-down the best I’ve had." 

James Coyle

FireEye, Inc.

"I knew Infosec could tell me what to expect on the exam and what topics to focus on most."

Julian Tang

Chief Information Officer

Our clients

Bank of America
Defense Information Systems Agency

NIST Cybersecurity Framework Boot Camp details

Day 1: Risk frameworks

  • Course introduction
  • Legal/governmental guidelines
    • Legislative
    • Regulatory

Day 2: CSF Components and Processes

  • NIST frameworks
    • RMF
    • CSF
  • CSF components
    • Profile
      • Current profile
      • Target profile
    • Core
      • Functions
      • Categories
      • Subcategories
      • Informative references
    • Implementation tiers
      • Tier 1: Partial
      • Tier 2: Risk informed
      • Tier 3: Repeatable
      • Tier 4: Adaptive
    • CSF processes (5 steps)
      • Identify


Day 3: CSF Processes and Implementation

  • CSF processes (cont.)
    • Protect
    • Defend
    • Respond
    • Recover
  • 7-step approach to establishing or improving a cybersecurity program
    • Step 1: Prioritize and scope
    • Step 2: Orient
    • Step 3: Create a current profile
    • Step 4: Conduct a risk assessment
    • Step 5: Create a target profile
    • Step 6: Determine, analyze and prioritize gaps
    • Step 7: Implement action plan
  • Links from CSF to security controls, COBIT 5 and ISO 27001