This three-day course introduces a model-based process improvement approach to managing operational resilience using the CERT® Resilience Management Model (CERT-RMM) v1.2.
CERT-RMM is a maturity model that promotes the convergence of security, business continuity, and IT operations activities to help organizations actively direct, control, and manage operational resilience and risk. By improving operational resilience processes (such as vulnerability analysis, incident management, and service continuity), an organization can use the model to improve and sustain the resilience of mission-critical assets and services. Because organizations can't plan for every disruption, the maturity model feature of CERT-RMM can be used to measure and improve the consistency and predictability of performance under times of stress. As a process improvement model, CERT-RMM also can be used by organizations to chart a structured improvement path by setting improvement targets, measuring current capabilities, and developing improvement plans-all focused on making mission-critical assets and services more resilient. And CERT-RMM is designed to make more efficient and effective use of domain-specific practices that an organization already uses today rather than replace them.
The course is composed of lectures and class exercises with ample opportunity for participant questions and discussions. After attending the course, participants will understand the fundamental concepts of operational resilience and operational resilience management, have a working knowledge of CERT-RMM process areas, and be able to begin process improvement efforts in their organization. Using CERT-RMM as a guide, participants will also be able to evaluate their current security, business continuity, and IT operations practices and make effective decisions about which practices are working and which need to be replaced.
There are no prerequisites for this course.
Participants will receive a course notebook containing the course materials.
This three-day course meets at the following times:
Days 1-3: 8:30 a.m.-4:30 p.m.
Course Fees [USD]
U.S. Industry: $2500
U.S. Government/Academic: $2000
This course may be offered by special arrangement at customer sites.