SCF Assessor Training

About The SCF Assessor Course

SCF Assessors are SAICO-certified individuals who are qualified to participate in and/or lead a SCF 3PAO’s assessment team. SCF Assessors are required to undergo foundational training (this course) to help ensure success in the role of an SCF Assessor. SCF Assessor training prepares students to participate on a SCF Third-Party Assessment Organization’s (3PAO) assessment team to conduct SCF-related Third Party Assessment, Attestation and Certification Services (3PAAC Services). The SCF Assessor course is not designed to train students to think like an assessor/auditor, since that is a prerequisite skill. The SCF Assessor training course is designed to refine a student’s existing knowledge of the following core concepts:    1. The structure and content of:           a. Secure Controls Framework (SCF); and           b. SCF Conformity Assessment Program (SCF CAP);    2. The assessment standards used to perform SCF CAP assessments;    3. Scoping the assessment using the Unified Scoping Guide (USG);    4. Cybersecurity risk tolerance & materiality concepts; and    5. The SCF CAP Code of Professional Conduct (CoPC). Prerequisites include having a proficient / conversational understanding of the following:    o  What the Secure Controls Framework (SCF) (e.g., structure, content, uses, etc.);    o  SCF Conformity Assessment Program (SCF CAP);    o  Cybersecurity & Data Protection Assessment Standards (CDPAS);    o  Integrated Controls Management (ICM) Model;    o  SCF Cybersecurity & Data Privacy Capability Maturity Model (C|P-CMM);    o  SCF Cybersecurity & Data Privacy Risk Management Model (C|P-RMM);    o  Unified Scoping Guide (USG);    o  Cybersecurity risk tolerance & materiality concepts; and    o  Proficient understanding of Set Theory Relationship Mapping (STRM). The SCF Assessor knowledge exam consists of one hundred (100) questions based on the course syllabus. A passing score of at least eighty percent (80%) is required to pass the knowledge exam and obtain certification as a SCF Assessor. SCF Assessor certifications are valid for a one (1) year period at which time, the certificate must be renewed or it is expired. The renewal process included paying a fee and taking a knowledge test to ensure the SCF Assessor's continued proficiency in the subject matter.