The A/CCRF certification is designed to test your theoretical knowledge of the NIST Cybersecurity Framework (CSF) and how to plan, manage, and optimize the framework for use within your own organization:

• The origin and original purpose of the framework
• The applicability of the framework across industries and sectors
• The three fundamental parts of the framework: the Core, the Implementation Tiers, and the Profiles
• The six functions (Govern, Identify, Protect, Detect, Respond, and Recover), the 22 categories (activities), and 106 subcategories (outcomes) under each of the six functions
• The purpose, utility, and intended use of the Implementation Tiers, Profiles, and Informative References