About the certification


The NIST Risk Management Framework (RMF) provides a comprehensive, flexible, repeatable, and measurable 7-step process that any organization can use to manage information security and privacy risk for organizations and systems. The Risk Management Framework provides a process that integrates security, privacy, and cyber supply chain risk management activities into the system development life cycle. The risk-based approach to control selection and specification considers effectiveness, efficiency, and constraints due to applicable laws, directives, policies, standards, or regulations. The NIST Risk Management Framework (RMF) Lead Implementer is certification intended for professionals seeking to validate their advanced knowledge of the NIST Risk Management Framework (RMF). This advanced-level certification exam is based on the NIST Risk Management Framework (RMF).

The exam includes topics such as Key Terms and definitions, Overview of the NIST Risk Management Framework (RMF), Purpose and Outcomes of the 7 RMF steps (Prepare, Categorize, Select, Implement, Assess, Authorize, and Monitor).

The NIST Risk Management Framework (RMF) Lead Implementer certification exam is an online, closed-book, and remotely-proctored exam. It includes 40 questions and the passing score is 70%. Candidates will have 60 minutes to complete the exam.

Validate your advanced knowledge of the NIST Risk Management Framework (RMF) and advance your career.

Register for your online proctored exam now!






Exam details


Exam code

ITC-122

Launch date

August 31, 2024

Exam description

The NIST Risk Management Framework (RMF) Lead Implementer exam validates the candidate's advanced knowledge in the NIST Risk Management Framework (RMF).

Current version

1.0

Exam format

Multiple choice; closed book; online proctored exam

Number of questions

40 questions

Passing score

70% (28 out of 40)

Exam duration

60 minutes

Level

Advanced

Languages

English and Portuguese

Exam description

Key Terms and definitions, Overview of the NIST Risk Management Framework (RMF), Purpose and Outcomes of the 7 RMF steps (Prepare, Categorize, Select, Implement, Assess, Authorize, and Monitor).

Recommended hours of study

32 hours

Bloom's Taxonomy

Level 2 (Understanding), Level 3 (Applying), Level 4 (Analyzing), and Level 5 (Evaluating)

Recommended reading

• The NIST Risk Management Framework (RMF)

Prerequisites

Pass the ITC-075: NIST Risk Management Framework (RMF) Foundation certification exam.

Recommended experience

One year of work experience in Risk Management

Validity period

Lifetime

Exam Content Outline


   Domains Weight

1. Terms and definitions

20%

2. The Prepare Step

20%

3. The Categorize Step

10%

4. The Select Step

10%

5. The Implement Step

10%

6. The Assess Step

10%

7. The Authorize Step

10%

8. The Monitor Step

10%

   Total

100%

How to get certified


1

Browse our certification programs and choose your certification.

2

Discover the exam objectives and prepare for your exam.

3

Register for your online proctored exam.

4

Take your online proctored exam in the comfort of your home or office.

5

Congratulations! You are certified!

Stackable Certifications


Earn 3 certifications and receive an integrator certification (designation).

Frequently Asked Questions


  • How much does an ITCERTS certification exam cost?

    All exams are available for $150 USD each. Prices may vary slightly by region and currency exchange rates.

  • Are there any prerequisites to take the exams?

    There are no prerequisites to take the exams. ITCERTS recommends that candidates have at least six months of work experience in the area that the certification exam covers.

  • What is the exam retake policy?

    If a candidate does not achieve a passing score on the first attempt, there is no waiting period between the first and the second attempt. If a candidate does not achieve a passing score on the second attempt, the candidate must wait at least 7 days before retaking the exam for a third time. A candidate may not take a given exam any more than three times per year (12 months).

  • How do I register for an Online Proctored Exam?

    Visit the Online Proctored Exam registration page to find complete instructions.

  • Are there any mandatory training to take an exam?

    Training is recommended as part of your certification preparation, but it is not mandatory.

  • Which languages are the exams available in?

    Our exams are currently available in English and Portuguese.

  • Where can I take the exams?

    Exams are delivered online (Online Proctored Exams) and can be taken from anywhere in the world.

  • Do the ITCERTS certifications expire?

    ITCERTS certifications are considered good-for-life and do not expire.

  • How can a potential employer verify my certifications?

    Your employer can verify your certification on our certification verification page. Your certification number will be needed in order to process the verification.

Subscribe

Subscribe


Subscribe to our newsletter