3 Day DIACAP Course
Our instructors are CISSP certified and have managed the C&A efforts on a wide variety of systems ranging from stand alone workstations to interconnected cross domain systems. The DIACAP 1 Day Boot Camp mixes instruction with real world examples of strategies and challenges faced in the DIACAP process.
DIACAP
The Department of Defense Instruction (DODI) 8510.01 established the DoD Information Assurance Certification and Accreditation Process (DIACAP) to streamline the approach to the certification and accreditation process, outline roles and responsibilities, and provide visibility into the accreditation process by centralizing the accreditation authority to insure DoD ISs are uniformly secure.
Applicability
DIACAP is applicable to all DoD-owned ISs and DoD-controlled ISs operated by a contractor or other entity on behalf of the Department of Defense that receive, process, store, display, or transmit DoD information, regardless of classification or sensitivity. Information assurance (IA) is a process, not a product. IA must be embedded in a programs lifecycle to achieve success in the C&A process. Our expert instructors designed this course to teach the tools necessary to mitigate C&A risk and provide security professionals with the tools necessary to effectively implement and validate the DIACAP process.
DIACAP Course Topics The following topics include both instruction and interactive labs:
Boot Camp Outline
1 Day
3 Day
DIACAP and IA Overview
DIACAP IA Policy
DIACAP Roles and Responsibilities
DIACAP 5 Step Process (high level)
DIACAP Packages & Documentation
8500.2 IA Controls (overview)
Configuration Management
Annual reporting requirements
8500.2 IA Controls (deep dive)
-
Execute the DIACAP process
-
DIACAP Scorecard
-
Develop DIACAP documentation
-
DISA STIG, Retina, and SRR training
-
Validation activities in the Lab
-
Course Learning Objectives:
- Gain fundamental knowledge of IA and DIACAP
- Understand governing DIACAP policy
- Build an effective DIACAP team
- Understand 5 step DIACAP process and how it relates to the SDLC
- Effectively manage the DIACAP C&A process
- Know the components of the DIACAP package
- Understand how system IA controls are determined
- Configuration management strategies
- Annual Reporting Requirements
- Deep Review of the 8500.2 IA Controls
- Know how to execute the DIACAP process
- Create a Plan of Action & Milestones (POA&M)
- Create DIACAP documentation (Artifacts)
- DISA STIG, Gold Disk, Retina, and SRR hands on activities
- Conduct live validation activities in the lab.
On completion of this course, you will have the tools to effectively implement and validate the DIACAP process as a security professional.
If you are or will be involved in the DIACAP process, you should take this course. The DIACAP 3 day Boot Camp is designed for the following:
- IASO/ISSM
- IAM
- DIACAP Team
- SME
- Security Engineers
- Security Analysts
Capabilities
- > Architecture Development
- > C3 Center
- > eCommerce
- > Embedded Software
- > Enterprise Application
- > Gaming Technology
- > Information Assurance
- > Client Solutions
- > 1 Day DIACAP Course
- > 3 Day DIACAP Course
- > DIACAP Contact
- > Knowledge Engineering
- > Legacy System Upgrades
- > Mobile Devices/WAP
- > Multi-tier Architecture
- > Object-Oriented Analysis
- > Service Oriented Architecture
- > Technologies
