Certified Authorization Professional (CAP)®
Our intensive 3-day CAP Bootcamp covers all seven domains of the Official (ISC)2 Guide to the CAP® CBK®, Second Edition. The Certified Authorization Professional (CAP) Certification is an objective measure of the knowledge, skills, and abilities required for personnel involved in the process of authorizing and maintaining information systems. Specifically, this credential applies to those responsible for formalizing processes used to assess risk and establish security requirements and documentation.
The instructor will present the course content to increase each participant’s knowledge of the tools needed to effectively secure their IT systems via standard, repeatable processes.
The components of the training program include
• Course Code: SEC307
• Career Level: Intermediate
• Course Duration: 5 Days (40 hours of training)
• Exam/Certification: Certified Authorization Professional (CAP)
• Course Delivery: Instructor-led classroom; Instructor-led virtual and hybrid options available
Check back often for updates or send us an email at training@TASCManagement.com so we can notify you of upcoming courses.
This course is intended for IT security professionals seeking CAP certification. It provides a focused, efficient approach to preparing for the exam and is targeted to authorization officials, system owners, information owners, information system security officers, certifiers, and senior system managers.
Required Prerequisites: None.
Recommended Experience: This course is intended for students who have at least one full year of experience using the federal Risk Management Framework (RMF) or comparable experience gained from the ongoing management of information system authorizations, such as ISO 27001.
Upon completion of this course, students will:
• Understand the historical legal and business considerations that required the development of the Risk Management Framework (RMF) including related mandates
• Identify key terminology and associated definitions
• Describe the RMF components
• Describe the core roles defined by the RMF
• Describe the core federal statutes, OMB directives, information processing standards and Special Publications, and Department of Defense and Intelligence Community instructions that form the legal mandates and supporting guidance required to implement the RMF
• Identify and understand the related processes integrated with the RMF
• Certification: CAP
• Number of questions: 125
• Length of Test: 3 hours
• Passing score: 700 out of 1000
• Languages: English
Domain 1: Understanding the Security Authorization of Information Systems
Domain 2: Categorize Information Systems
Domain 3: Establish the Security Control Baseline
Domain 4: Apply Security Controls
Domain 5: Assess Security Controls
Domain 6: Authorize Information System
Domain 7: Monitor Security Controls