
NIST Cybersecurity Professional®
(NCSP®) 800‑137 Foundation Certificate
Learn how to apply NIST SP 800‑137 Information Security Continuous Monitoring (ISCM) principles to strengthen continuous monitoring programs.

NIST Cybersecurity Professional®
(NCSP®) 800‑137 Foundation Certificate
Course Description
Information security continuous monitoring (ISCM) ensures ongoing awareness of information security, vulnerabilities, and threats. NIST SP 800‑137 provides authoritative guidance for ISCM strategy, architecture, metrics, and operational processes.
The NCSP® 800‑137 Foundation Certificate is a 2‑day, instructor‑led course introducing participants to ISCM principles and practices as defined in NIST SP 800‑137. This course explains ISCM strategy development, metrics, automation, reporting, and alignment with NIST CSF 2.0.
Participants learn how to apply foundational ISCM concepts across enterprise environments, preparing them for more advanced NCSP® monitoring, detection, and response training.
What You Will Learn
Participants gain knowledge of NIST SP 800-137 and how define security metrics, establish ongoing monitoring strategies, and analyse threat data to continuously support and improve risk informed decision making. You will learn:
-
How NIST SP 800‑137 aligns with NIST CSF 2.0 and supports monitoring programs.
-
The core concepts of ISCM strategy and architecture.
-
How to select meaningful ISCM metrics.
-
How to automate monitoring and data collection.
-
How to analyse and report ISCM results.
-
How to embed ISCM practices into organisational security programs.
Course Agenda
Day 1: ISCM Strategy, Architecture & Metrics
Module 1: Introduction to NIST SP 800‑137
Module 2: ISCM Strategy Development
Module 3: ISCM Architecture & Data Sources
Module 4: Metrics, Indicators & Thresholds
Day 2: Automation, Analysis & Continuous Improvement
Module 5: Automation & Data Collection
Module 6: Analysis & Response
Module 7: Reporting & Communication
Module 8: Alignment with NIST CSF 2.0
Learning Outcomes
Participants will be able to:
-
Explain how NIST SP 800‑137 supports NIST CSF 2.0 monitoring programs.
-
Describe ISCM strategy and architecture requirements.
-
Apply foundational ISCM practices.
-
Validate monitoring operations and reporting.
-
Understand lifecycle and governance requirements.
-
Translate NIST SP 800‑137 guidance into actionable ISCM practices.
Who Should Attend?
Ideal for individuals who need to how to define security metrics, establish ongoing monitoring strategies, and analyse threat data to continuously support improvement and informed decision making, including:
-
Executives
-
IT & Security Administrators
-
Cybersecurity Beginners & Career‑Changers
-
SOC & Monitoring Personnel
-
Compliance & Audit Teams
-
Technical Support Staff
Prerequisites
There are no formal prerequisites for this Foundation‑level course. It is designed as an accessible entry point into NIST‑aligned cybersecurity training.
Participants are provided with:
-
NIST Cybersecurity Professional® (NCSP®) 800‑137 Foundation Certificate courseware including links to further reading and resources.
-
NIST Cybersecurity Professional® (NCSP®) 800‑137 Foundation Certificate, Certificate of Completion.
-
NIST Cybersecurity Professional® (NCSP®) 800‑137 Foundation Certificate digital badge.
Enrol Today
Learn how to apply NIST SP 800‑137 Information Security Continuous Monitoring (ISCM) principles to strengthen continuous monitoring programs.
