Training Courses

JSIG RMF Training

This is a three-day, instructor-led, course on Joint Special Access Program (SAP) Implementation Guide (JSIG) Risk Management Framework (RMF) principles. The goal is to provide knowledge and skills to ISSMs, ISSOs, ISSEs, and Assessors responsible for implementing and assessing security policies, practices, and technologies in accordance with Risk Management Framework, JSIG, IC, and DoD Guidance. 
Our trainers have firsthand subject matter expertise with the training content, which results in a dynamic and impactful training experience. Bring your unclassified questions! You’ll have the ability to ask them in class and share experiences with both the instructor and other students. This is a key aspect of this training experience. We will be following local, state and national COVID guidelines.

JSIG RMF Course Schedule

Need a Dedicated Course at your site? Contact us! 443-718-0670
Charleston, SCCharleston, SC August 19-21, 2024
Holiday Inn & Suites Airport/Convention Center Area
3025 West Montague Avenue, North Charleston, SC 29418
8AM-5PM each day
San Antonio, TXSan Antonio, TX November 4-6, 2024
Holiday Inn San Antonio – Six Flags
11010 Interstate 10 West, San Antonio, TX 78230
8AM-5PM each day
WPAFB, OH areaWPAFB, OH area Dec 9-11, 2024
Hilton Garden Inn Beavercreek, OH
3520 Pentagon Park Blvd, Dayton, OH 45431
8AM-5PM each day
Need a Dedicated Course at your site? Contact us! 443-718-0670


“Instructor was great. Clear, extremely knowledgeable, patient, personable, professional, and was able to communicate a traditionally dry topic in an interesting / fascinating manner”

– JSIG RMF Course student

“Pop up questions and discussions were incredibly valuable”

– JSIG RMF Course student

“Great stuff! Can’t wait to get back and start applying it”

– JSIG RMF Course student

Training Details

JSIG Risk Management Framework (RMF) course outline:

  1. Introductions and Course Overview
  2. Introduce RMF Background and Purpose
  3. Discuss Risks, Vulnerabilities, and Threats
  4. Categorizing Information Systems and Identify Information Types
  5. Discuss Risk Management and Risk Assessments
  6. Perform a detailed analysis of the RMF process steps
  7. Describe Information System (IS) components
  8. Gain awareness of System Security Plan (SSP)
  9. Discuss Security Controls Traceability Matrix (SCTM) and Implementing Security Controls
  10. Creating Authorization Package and Authorization to Operate (ATO)
  11. Continuous Monitoring for Isolated Networks
  12. Ongoing Authorization Program
  13. Gain awareness of FedRAMP and CMMC
  14. Best Practices, Tools, and Resources

Additional JSIG RMF Course Details

Successful completion of this course provides students the knowledge to:

  • Describe the history, laws, policies, and other governance pertaining to RMF
  • Recognize various tools that can assist throughout the RMF process
  • Employ Continuous Monitoring Strategies
  • Explain each step of the RMF process
  • Conduct a Risk Assessment
  • Create a System Security Plan

No-Shows: We strive to meet the customer need. However, if a student doesn’t show for a scheduled course, the customer forfeits payment.

Upon successful completion, a course completion certification will be provided. The name provided during course registration, including any Prefix and/or Suffix, will be the name printed on the certificate.

Maintaining Your 8570 Certification Requirements: 24 instructional hours

Need training at your site? We can do that. Contact us for details at

Need SF-182 details? Check the Eventbrite page linked above, at the bottom of the page.

Cancellation and Change Policy: Cancellation or Change Requests must be received 10 business days before the start date of an event for a full refund minus applicable fees.

About the Team

CyberAware Technologies is a cybersecurity training and consulting company founded in 2019 by Ted Kula, a PMP-certified industry professional with 25 years’ DoD contracting experience, with specific focus in sanitization software and IC training.

TCecure, LLC is a cybersecurity services and solutions company providing security architecture and engineering, software assurance, assessments, training, and consulting to public sector and commercial clients. CEO: Tina Williams-Koroma.

CAT Logo

Training Resources