CNSS-4012 Senior System Manager/CNSS-4015 System Certifier Combination Course

Information Assurance Associates (IA2)

Register Now

USA 2011 4-day Training Session //July 30 - Aug 2


The IA2 CNSS-4012 Senior System Manager (SSM) and CNSS-4015 System Certifier double certificate course is specifically designed to consolidate all SSM and System Certifier knowledge requirements into a single, comprehensive curriculum. This course provides four days of intense, highly concentrated, non-technical professional training necessary to achieve the in-depth knowledge, skills, and abilities needed to enforce Information Assurance (IA) requirements, apply Information System Security (INFOSEC) methodologies and facilitate certification and accreditation (C&A) activities.

Additionally, this course addresses professional and functional requirements necessary for System Managers and System Certifiers to identify specific assurance levels and evaluate risk impact thresholds in meeting applicable security policies, standards and requirements to ensure that accrediting authorities have the information necessary to make an objective accreditation determination based on an acceptable level of risk. This course focuses on analyzing, evaluating, and assessing, information system security policies, processes and procedures necessary to ensure a comprehensive multi-disciplined assessment of technical and non-technical security features and associated safeguards.

Special emphasis is placed on certification requirements for federal interest information system as well as identifying, implementing and integrating management and administrative solutions for securing critical information infrastructures and establishing standards necessary to help protect the confidentiality, maintain the integrity and ensure the availability of sensitive data and critical organizational computing resources.

Specific topics include:

  • Information System Security Administration, Management, Program Implementation and Documenting Mission Needs.
  • Analyzing, Assessing, Measuring, Managing and Mitigating Information System Threats, Vulnerabilities and Associated Risks.
  • Legal Issues, Intrusion Forensics and Incident Response as well as Intrusion Prevention, Detection, Response, Recovery and Reporting.
  • Physical, System, Data Access Control.
  • Life-Cycle Security and Life-Cycle Management in Defending the Information Environment (Information Operations).
  • Configuration Management, Consequence Management, Contingency and Disaster Recovery Planning (Business Continuity Planning (BCP)).
  • Certification, Evaluation and Network Security Certification and Accreditation (C&A).
  • System Certification Requirements including Policies, Processes, Procedures and Protocols.

Student Requirements, experience/expertise:

Students should have a fundamental understanding as well as practical knowledge and experience in enforcing Information Assurance requirements, applying information system security methodologies and facilitating certification and accreditation activities.

What you get

  • Student Training Manual
  • Exercise Work-Booklet
  • Student Course CD – One Per Student
  • Certification - CNSS-4012 Senior Systems Manager Certificate

What to bring:

Students should have a fundamental understanding as well as practical knowledge and experience in enforcing Information Assurance requirements, applying information system security methodologies and facilitating certification and accreditation activities.


Norman Beebe has over 25 years of managing information security within federal interest computer systems and networks that store, process, transmit or display sensitive, classified or national intelligence information. Mr. Beebe's technical certifications include: Certified Information System Security Professional (CISSP), International Information Systems Security Certification Consortium (ISC2); Certified Information Security Manager (CISM), Information Systems Audit and Control Association; National Security Agency (NSA) Information System Security Assessment and Evaluation Methodologies (IAM/IEM); and he is endorsed as a "Fully Qualified" Certification Agent. He has extensive experience in defining and designing risk analysis methodologies within federal information infrastructures and served as an NSA Adjunct Faculty member and as an NSA Accreditation Action Officer (AAOs). Mr. Beebe is a recipient of the prestigious Copernicus Award for excellence and special achievement in Command, Control, Communication, Computer and Intelligence (C4I) and winner of the National Information Assurance Leadership Award for Security Education, Training and Awareness.

Gregory Welch has extensive experience in training, curriculum development, and Information Assurance (IA). Coming from a background of cryptology and signals analysis, he has used this capability to design, develop, and map multiple training courses to the Committee of National Security Systems (CNSS) requirements. He has developed and delivered numerous presentations at seminars and conferences; most recently as a guest presenter at the National Security Institute (NSI) during the Impact 2008 conference. He has provided Certification and Accreditation (C&A) efforts and training to DoD and Federal agencies including: FBI, NSA, DHS, Coast Guard, NGA, DOI, DOJ, and all branches of the armed forces. Mr. Welch is a Certified Information System Security Professional (CISSP), and a "Fully Qualified Certification Agent". He is certified in National Security Agency (NSA) Information System Security Assessment and Evaluation Methodologies (IAM/IEM) and has received the "Advanced Signals Analyst" designation.

Jeff Moulton In September 2008, Mr. Moulton joined Georgia Tech Research Institute (GTRI) as Lead, Information Operations. GTRI is a leading university-affiliated applied research and development center. In this key area, Mr. Moulton provides strategic direction and leadership and is responsible for focusing research, business development, building technical teams, and coordinating information operations across the university and institute. Mr. Moulton has in-depth experience within the intelligence communities assessing and defining corporate-level and globally deployable network security solutions. His technical certifications include: Certified Information Systems Security Professional (CISSP), International Information Systems Security Certification Consortium (ISC2), Project Management Professional (PMP), Project Management Institute, National Security Agency (NSA) Information Assurance Manager (IAM), National Security Agency (NSA) INFOSEC Evaluation Methodology (IEM), Open Source Professional Security Analyst (OPSA), and Malware Forensics Investigator (MFI), Wetstone. Before joining GTRI, Mr. Moulton served as the Information Assurance Assistant Program Manager at the Naval Surface Warfare Center. In this role he established an Information Assurance (IA) Division for the Deployable Joint Command and Control (DJC2) Joint Program Office. He provided leadership and direction for all information assurance facets of the $566M Joint Program of Record and managed the many facets of a major DoD acquisition program. He recruited and built the first joint integrated IA team across government and military service branches, with members from DIA, NSA, SPAWAR, NETWARCOM, OSD NII, JITC, USJFCOM, USPACOM, USEUCOM, USSOUTHCOM, and other Department of Defense (DoD) IA stakeholders. Mr. Moulton authored the DJC2 IA Strategy, Technology Readiness Assessments, Analysis of Alternatives, and other DoD acquisition documents required by public law. Mr. Moulton continues to represent the DJC2 Joint Program Office as the IA subject matter expert with DoD intelligence agencies (NSA, CIA, and DIA). In addition, Mr. Moulton serves on the Department of the Navy Network Warfare Command (NETWARCOM) IA Working Group.

Ends April 30
Ends Jun 15
Ends Jul 29