The majority of questions will stem from the NIST 800-37 (RMF) but you should be familiar with the concepts presented in FIPS 199 and 200, and the general purposes of the other NIST special publications. If you have access to the FedVTE training website, they have a 11 hour course on there that covers all of the exam objectives so you feel extremely confident walking into the exam room.
Hope that helps!
Was your exam based on Rev or Rev2? I'm taking it in a couple of weeks and no one can seem to give an answer on which revision the exam is now on. Thanks in Advance!
I studied both documents, because the exam guidelines were released on Oct 15, 2018, NIST 37 R1 was withdrawn on December of 2019, NIST 37 R2 publication was May of 2018, and usually exam guidelines are good for at least 2 years.
I took the test back in Sept 2020, and found a great deal of other NIST instructions mentioned in 37 R1 and R2. So I read over R1 and R2 in a review like manner. Also keep in mind the 2 year experience requirement, if you know the steps of the RMF and what NIST Instruction aligns with those steps you will be ok.
Just remember there are other NIST Instructions you MUST study in order to pass this test.
Thanks for the info. So was there any Rev 2 stuff on the exam? The major changes being the addition of the Prepare step and the addition of tasks in some of the other steps. Also, the SDLC aligns differently in Rev 2 then it does in Rev 1. The correct answer for Rev 2 may not be correct for Rev 1.
No problem. I cannot exactly remember. I think the tests consisted of both. As far as the SDLC I studied NIST 64 AND 160. MY test version did not appear to be detailed specific on any of the NIST instructions. Basically know the RMF process AND read over the instructions pertaining to the RMF process.