1. Introduction to Assessments2. Risk and Security3. Statutory & Regulatory GRC4. Federal RMF Requirements5. Risk Management Framework - SP 800-37, rev.16. Roles and Responsibilities7. Assessment Process8. Assessment Methods9. Assessment Techniques for each kind of control10. System and Network Assessments11. Security Components Fundamentals12. Cybersecurity Controls13. CUI Controls14. Evidence of Assessment15. Reporting16. Conclusion
AppendixA. Templates for RMF documents and artifacts commonly required or requestedB. Templates for RMF Policies and Procedures by Control FamilyC. Assessment and Testing Tools