Boot Camp

NIST Cybersecurity Framework Training Boot Camp

This three-day training teaches you how to employ the NIST Cybersecurity Framework in order to better manage and reduce your organization’s cybersecurity risk.

About our NIST Cybersecurity Framework Training Boot Camp

  • 90-day extended access to Boot Camp components, including class recordings
  • 100% Satisfaction Guarantee
  • Free 90-day Infosec Skills subscription (access to 1,400+ additional courses and labs)
  • Knowledge Transfer Guarantee
  • Pre-study learning path

Award-winning training you can trust

Wistia video thumbnail

What you'll learn

Training overview

In February 2013, the President of the United States issued Executive Order (EO) 13636, “Improving Critical Infrastructure Cybersecurity.” In response to this mandate, the National Institute of Standards and Technology (NIST) was tasked with the development of the Framework for Improving Critical Infrastructure Cybersecurity, more commonly known as the Cybersecurity Framework. Although it was designed specifically for companies that are part of the U.S. critical infrastructure, many other organizations in the private and public sectors, including federal agencies, are using the framework as a helpful tool in managing cybersecurity risks.

This boot camp covers each of the three NIST Cybersecurity Framework components: the framework core, the framework implementation tiers and the framework profiles.


Training schedule

Day 1: Risk frameworks
  • Course introduction
  • Legal/governmental guidelines
    • Legislative
    • Regulatory
Day 2: CSF Components and Processes
  • NIST frameworks
    • RMF
    • CSF
  • CSF components
    • Profile
      • Current profile
      • Target profile
    • Core
      • Functions
      • Categories
      • Subcategories
      • Informative references
    • Implementation tiers
      • Tier 1: Partial
      • Tier 2: Risk informed
      • Tier 3: Repeatable
      • Tier 4: Adaptive
    • CSF processes (5 steps)
      • Identify
Day 3: CSF Processes and Implementation
  • SF processes (cont.)
    • Protect
    • Defend
    • Respond
    • Recover
  • 7-step approach to establishing or improving a cybersecurity program
    • Step 1: Prioritize and scope
    • Step 2: Orient
    • Step 3: Create a current profile
    • Step 4: Conduct a risk assessment
    • Step 5: Create a target profile
    • Step 6: Determine, analyze and prioritize gaps
    • Step 7: Implement action plan
  • Links from CSF to security controls, COBIT 5 and ISO 27001

Guaranteed results

Our boot camp guarantees

100% Satisfaction Guarantee

If you’re not 100% satisfied with your training at the end of the first day, you may withdraw and enroll in a different online or in-person course.

Knowledge Transfer Guarantee

If an employee leaves within three months of obtaining certification, Infosec will train a different employee at the same organization tuition-free for up to one year.

Unlock team training discounts

If you’re like many of our clients, employee certification is more than a goal — it’s a business requirement. Connect with our team to learn more about our training discounts.

Enroll in a boot camp

  • May 31, 2023 - June 2, 2023

    Online only

  • September 6, 2023 - September 8, 2023

    Online only

  • January 17, 2024 - January 19, 2024

    Online only