top of page

NIST Cybersecurity Professional®
(NCSP®) 800‑137 Foundation Certificate


Learn how to apply NIST SP 800‑137 Information Security Continuous Monitoring (ISCM) principles to strengthen continuous monitoring programs.

NCSP 800-137 Foundation.png

NIST Cybersecurity Professional®

(NCSP®) 800‑137 Foundation Certificate

Course Description

Information security continuous monitoring (ISCM) ensures ongoing awareness of information security, vulnerabilities, and threats. NIST SP 800‑137 provides authoritative guidance for ISCM strategy, architecture, metrics, and operational processes.


The NCSP® 800‑137 Foundation Certificate is a 2‑day, instructor‑led course introducing participants to ISCM principles and practices as defined in NIST SP 800‑137. This course explains ISCM strategy development, metrics, automation, reporting, and alignment with NIST CSF 2.0.


Participants learn how to apply foundational ISCM concepts across enterprise environments, preparing them for more advanced NCSP® monitoring, detection, and response training.

What You Will Learn

Participants gain knowledge of NIST SP 800-137 and how define security metrics, establish ongoing monitoring strategies, and analyse threat data to continuously support and improve risk informed decision making. You will learn:

  • How NIST SP 800‑137 aligns with NIST CSF 2.0 and supports monitoring programs.

  • The core concepts of ISCM strategy and architecture.

  • How to select meaningful ISCM metrics.

  • How to automate monitoring and data collection.

  • How to analyse and report ISCM results.

  • How to embed ISCM practices into organisational security programs.

Course Agenda

Day 1: ISCM Strategy, Architecture & Metrics
Module 1: Introduction to NIST SP 800‑137
Module 2: ISCM Strategy Development
Module 3: ISCM Architecture & Data Sources
Module 4: Metrics, Indicators & Thresholds


Day 2: Automation, Analysis & Continuous Improvement
Module 5: Automation & Data Collection
Module 6: Analysis & Response
Module 7: Reporting & Communication
Module 8: Alignment with NIST CSF 2.0

Learning Outcomes

​Participants will be able to:

  • Explain how NIST SP 800‑137 supports NIST CSF 2.0 monitoring programs.

  • Describe ISCM strategy and architecture requirements.

  • Apply foundational ISCM practices.

  • Validate monitoring operations and reporting.

  • Understand lifecycle and governance requirements.

  • Translate NIST SP 800‑137 guidance into actionable ISCM practices.

Who Should Attend?

Ideal for individuals who need to how to define security metrics, establish ongoing monitoring strategies, and analyse threat data to continuously support improvement and informed decision making, including:

  • Executives

  • IT & Security Administrators

  • Cybersecurity Beginners & Career‑Changers

  • SOC & Monitoring Personnel

  • Compliance & Audit Teams

  • Technical Support Staff

Prerequisites

There are no formal prerequisites for this Foundation‑level course. It is designed as an accessible entry point into NIST‑aligned cybersecurity training.


Participants are provided with:

  • NIST Cybersecurity Professional® (NCSP®) 800‑137 Foundation Certificate courseware including links to further reading and resources.

  • NIST Cybersecurity Professional® (NCSP®) 800‑137 Foundation Certificate, Certificate of Completion.

  • NIST Cybersecurity Professional® (NCSP®) 800‑137 Foundation Certificate digital badge.

​Enrol Today

Learn how to apply NIST SP 800‑137 Information Security Continuous Monitoring (ISCM) principles to strengthen continuous monitoring programs.

NCSP 800-137 Foundation.png
Further Reading

NIST Cybersecurity Professional® 

NCSP®, NIST Cybersecurity Professional® and NIST Cyber Security Professional® are registered trademarks of CySec Professionals Ltd. All frameworks, models, and course materials are proprietary intellectual property protected across the UK, EU, US, Canada, and Australia. The Digital Trust Institute® (DTI®) is a trading name of CySec Professionals Ltd.

NCSP® is a governed, trademarked credential ecosystem aligned to NIST CSF 2.0 and key NIST Special Publications, stewarded by CySec Professionals Ltd and The Digital Trust Institute® (DTI®).

NIST content is republished courtesy of the National Institute of Standards and Technology. CySec Professionals Ltd is an independent organisation and is not affiliated with or endorsed by NIST.

Part of the NCSP® Credential Ecosystem - https://digitaltrust.institute

© 2017 - 2026 CySec Professionals Ltd. All rights reserved.

Terms & Conditions

UK Cyber Security Council Membership
Federation of Small Business Member
Greater Manchester Chamber of Commerce Member
bottom of page