One Cohort.
Three Disciplines.

The core federal cybersecurity compliance framework — all 7 steps from system registration through continuous monitoring, plus advanced assessment and risk topics.

• RMF Foundations — Prepare, Categorize, Select, Implement, Assess, Authorize, Monitor
• Information Assurance — CIA Triad, cryptography, hashing, password security
• Security Control Assessment (SCA) — assessment planning, EXAMINE/INTERVIEW/TEST, writing findings, SAR
• Risk & POA&M Mastery — CVSS scoring, POA&M writing, milestone management, risk acceptance
• Vulnerability Management — scanning, CVE prioritization, CISA KEV, ConMon integration

Security risks unique to AI and machine learning systems — and how to assess, govern, and defend them using the NIST AI Risk Management Framework.

• AI Threat Landscape — prompt injection, model poisoning, data extraction, adversarial examples
• NIST AI RMF — GOVERN, MAP, MEASURE, MANAGE functions applied to real AI deployments
• Securing Generative AI — LLM controls, RAG pipeline risks, output validation, API access controls
• AI in the RMF — categorizing AI systems under FIPS 199, selecting 800-53 controls, ATO integration

Securing cloud-native systems on AWS, Azure, and GCP — from shared responsibility and IAM hardening to FedRAMP authorization and DevSecOps pipelines.

• Cloud Security Fundamentals — shared responsibility, IAM, network segmentation, encryption at rest and in transit
• FedRAMP Authorization — Moderate/High baselines, SSP for cloud systems, 3PAO assessment, cloud ConMon
• Container & Kubernetes Security — CIS hardening, secrets management, pod security, runtime defense
• DevSecOps Integration — SAST/DAST/SCA in CI/CD, IaC scanning, automated compliance gates