About the exam
The A/CCRF certification is designed to test your theoretical knowledge of the NIST Cybersecurity Framework (CSF) and how to plan, manage, and optimize the framework for use within your own organization:
The origin and original purpose of the framework
The applicability of the framework across industries and sectors
The three fundamental parts of the framework: the Core, the Implementation Tiers, and the Profiles
The five functions (Identify, Protect, Detect, Respond, and Recover), the 23 categories (activities), and 108 subcategories (outcomes) under each of the five functions
The purpose, utility, and intended use of the Implementation Tiers, Profiles, and Informative References
Skills you will acquire
Functional and Categorical Analysis
Gain comprehensive knowledge of the five functions (Identify, Protect, Detect, Respond, and Recover), the 23 categories (activities), and 108 subcategories (outcomes) that underpin the framework
Practical Application and Framework Use
Comprehend the purpose, utility, and intended use of Implementation Tiers, Profiles, and Informative References to translate theoretical knowledge into real-world application
Planning, Managing, and Optimizing
Develop the skills to effectively plan, manage, and optimize the NIST Cybersecurity Framework within your organization while ensuring its successful implementation and ongoing improvement
Framework Origin and Purpose
Explore the purpose and historical background of the NIST Cybersecurity Framework to better understand its objectives
Framework
Versatility
Discover the broad applicability of the NIST Cybersecurity Framework across diverse industries and sectors that makes it universally adaptable
Framework
Components
Grasp the three fundamental parts of the framework (the Core, Implementation Tiers, and Profiles) and their interplay in cybersecurity planning