top of page

NIST Cybersecurity Professional®
(NCSP®) 800‑100 Foundation Certificate


Learn how to apply NIST SP 800‑100 governance principles to strengthen organisational cybersecurity programs.

NCSP 800-100 Foundation.png

NIST Cybersecurity Professional®

(NCSP®) 800‑100 Foundation Certificate

Course Description

Information security governance requires structured roles, responsibilities, and program management practices. NIST SP 800‑100 provides authoritative guidance for establishing and maintaining organisational security programs.

The NCSP® 800‑100 Foundation Certificate is a 2‑day, instructor‑led course introducing participants to security governance principles and practices as defined in NIST SP 800‑100. This course explains governance structures, risk integration, metrics, reporting, and alignment with NIST CSF 2.0.

Participants learn how to apply foundational governance concepts across organisational security programs, preparing them for more advanced NCSP® governance and risk training.

What You Will Learn

Participants gain knowledge of NIST SP 800-100 and how to build, maintain, and mature an information security program. You will learn:

  • How NIST SP 800‑100 aligns with NIST CSF 2.0 and supports governance programs.

  • The core concepts of security governance and program management.

  • How to define roles, responsibilities, and reporting structures.

  • How to integrate risk management into security programs.

  • How to develop and measure security metrics.

  • How to embed governance practices into organisational cybersecurity strategy.

Course Agenda

Day 1: Governance Foundations, Roles & Program Structure
Module 1: Introduction to NIST SP 800‑100
Module 2: Core Governance Concepts
Module 3: Roles, Responsibilities & Leadership
Module 4: Program Structure & Policy Requirements


Day 2: Risk, Metrics & Continuous Improvement
Module 5: Integrating NIST SP 800‑39 Risk Management
Module 6: Security Metrics & Measurement
Module 7: Reporting & Assurance
Module 8: Alignment with NIST CSF 2.0

Learning Outcomes

​Participants will be able to:

  • Explain how NIST SP 800‑100 supports NIST CSF 2.0 governance programs.

  • Describe governance structures and responsibilities.

  • Apply foundational governance practices.

  • Validate program performance using metrics.

  • Understand risk integration requirements.

  • Translate NIST SP 800‑100 guidance into actionable governance practices.

Who Should Attend?

Ideal for individuals who need to understand security governance, risk management, and how to build a comprehensive security program, including:

  • Executives

  • IT & Security Administrators

  • Cybersecurity Beginners & Career‑Changers

  • Governance, Risk & Compliance Teams

  • Audit & Assurance Personnel

  • Technical Support Staff

Prerequisites

There are no formal prerequisites for this Foundation‑level course. It is designed as an accessible entry point into NIST‑aligned cybersecurity training.


Participants are provided with:

  • NIST Cybersecurity Professional® (NCSP®) 800‑100 Foundation Certificate courseware including links to further reading and resources.

  • NIST Cybersecurity Professional® (NCSP®) 800‑100 Foundation Certificate, Certificate of Completion.

  • NIST Cybersecurity Professional® (NCSP®) 800‑100 Foundation Certificate digital badge.

​Enrol Today

Learn how to apply NIST SP 800‑100 governance principles to strengthen organisational cybersecurity programs.

NCSP 800-100 Foundation.png
Further Reading

NIST Cybersecurity Professional® 

NCSP®, NIST Cybersecurity Professional® and NIST Cyber Security Professional® are registered trademarks of CySec Professionals Ltd. All frameworks, models, and course materials are proprietary intellectual property protected across the UK, EU, US, Canada, and Australia. The Digital Trust Institute® (DTI®) is a trading name of CySec Professionals Ltd.

NCSP® is a governed, trademarked credential ecosystem aligned to NIST CSF 2.0 and key NIST Special Publications, stewarded by CySec Professionals Ltd and The Digital Trust Institute® (DTI®).

NIST content is republished courtesy of the National Institute of Standards and Technology. CySec Professionals Ltd is an independent organisation and is not affiliated with or endorsed by NIST.

Part of the NCSP® Credential Ecosystem - https://digitaltrust.institute

© 2017 - 2026 CySec Professionals Ltd. All rights reserved.

Terms & Conditions

UK Cyber Security Council Membership
Federation of Small Business Member
Greater Manchester Chamber of Commerce Member
bottom of page