Name: STIG 101 2.0
Price: 1500.00 USD
Availability: InStock

The DISA Security Technical Implementation Guides (STIGs) are the technical "hardening" standard for all DoD IT systems. This course bridges the gap between policy and the command line, teaching system admins exactly how to lock down systems and prove compliance.

This one-day course provides in-depth instruction on applying and maintaining security standards across DoD IT systems. Participants will explore the purpose and organization of STIGs, learn how to implement STIG requirements across different systems and technologies, and develop hands-on skills for evaluating system compliance.

Who Should Attend?

System Admins

Technical staff who need to interpret "policy speak" into actual configurations.

ISSOs

Security Officers who need to verify checklists and document findings.

Auditors

Validators who need to identify false positives and inspect .ckl files.

Tools You Will Master

DISA STIG Viewer

.ckl file management

SCC Tool

SCAP Compliance Checker

OpenSCAP

Linux Automation

Excel / CSV

Bulk STIG Processing

Course Agenda

The Fundamentals & Viewers

Navigating the Cyber Exchange. Downloading the correct STIGs. Importing and setting up Checklists in the STIG Viewer. Understanding CAT I, II, and III findings.

Automation & SCAP

Running the SCAP Compliance Checker (SCC) against Windows and Red Hat targets. Merging automated results into your checklists. Documenting "False Positives" and mitigations correctly.

Frequently Asked Questions

Do I need a special laptop for this?

No. You will access our cloud-based cyber range via a standard web browser. All tools (STIG Viewer, SCC) are pre-installed in the lab environment.

Is this relevant for non-DoD systems?

Yes. STIGs are considered the "Gold Standard" for system hardening across many federal agencies and private sector companies aiming for high security.

STIG 101 2.0