The journey begins with adopting and adapting the NIST cybersecurity framework

digital value management system™

Our Mission is to help organizations of any size Create, Protect, and Deliver Trusted Digital Business Value™

Click Here for the DVMS Institute Corporate Presentation

Accredited by APMG International, Certified by NCSC/GCHQ in the UK & Recognized by DHS-CISA in the USA

The DVMS Institute

Our Vision is to Teach and Mentor organizations of any size, how to build a Digital Value Management System™ (DVMS) capable of managing an organization’s digital risk, cyber resiliency and digital business value

a Blueprint to Building 21st Century cyber risk Management Programs

The DVMS CPD™ Model

The DVMS CPD Overlay Model represents a 21st Century Digital Value Management System that enables organization’s to Create, Protect and Deliver (CPD) Trusted Digital Business Value to clients and stakeholders.

overlay models work for any size organization

How Overlay Models Work

Scalable overlay models enable any organization to treat digital value creation and protection as aspects of quality, regardless of size

A Blueprint to Operationalize the DVMS CPD core business functions

The DVMS z-x™ Model

The Z-X Model establishes the minimal CORE Business Functions to Operationalize the Create, Protect, and Deliver (CPD) Model Across an Enterprise and its Supply Chain

enabling communications & Collaboration across business & Technical silos

The DVMS 3D Knowledge™ Model

The 3D Knowledge enables Communication & Collaboration between the Business, GRC, IT, and Cybersecurity Teams responsible for managing organizational digital business risk and value.

Adapting the NIST Cybersecurity Framework to the Energy Sector

DVMS Institute Case Study

NIST Cyber Security Professional (NCSP) Dr. Joseph Baugh from Guidehouse Security shares his story on how he helped a large energy company become compliant with TSA Security Directive for Pipeline Security

Accredited by APMG International, Certified by NCSC/GHHQ, and Recognized by DHS CISA

Our Award-Winning NIST Cybersecurity Professional (NCSP®)
Publications & certifications

The DVMS Institutes programs have been adopted by governments and businesses across the globe

Teaching Organizations How to Adopt and Adapt the NIST Cybersecurity Framework to Create, Protect and Deliver Trusted Digital Business Value

DVMS Institute Learning system

Publications

The Institute's publications take stakeholders on a journey into the world where the ever-changing cyber threat landscape intersects with digital business risk.

The publications are designed to help organizations understand the relationship between cybersecurity and digital business value and how to leverage that relationship to create an adaptive, cyber-resilient digital business enterprise.

The publications provide:

- The guidance all employees need to understand the fundamentals of digital business value and risk, its threat landscape, the NIST Cybersecurity Framework, and the role they play in deterring digital risk.

- The guidance practitioners and business leaders need to communicate with C-Level executives about the business value a NIST Cybersecurity program brings to existing digital business applications and employee productivity programs

- The guidance practitioners need to create an adaptive, cyber-resilient digital business risk management program that is fit for use, auditable for purpose, and aligned with global cybersecurity frameworks, standards and regulations.

- The guidance on how Governance, Risk and Compliance executives can leverage the NIST Cybersecurity Framework, the Institutes DVMS-CPD model, and existing business systems to create a culture-driven, adaptive, cyber-resilient digital business capable of Creating, Protecting, and Delivering digital business value

Certification Training

The DVMS Institute is partnering with CYSEC Professionals Ltd to accelerate and scale an organization’s cybersecurity, digital business risk, and NIST Cybersecurity Framework competence.

It does this by providing NCSP®
upskilling pathways for all employees within an organization.

CYSEC's NCSP® Training Programs teach

- The fundamentals of digital business value and risk and the role the NIST Cybersecurity Framework plays in helping organizations mitigate their people, process, and technology risk.

- The fundamentals of the NIST Cybersecurity Framework (NIST-CSF) and how it creates a new way to communicate with C-Level executives about the business value a NIST -CSF program brings to existing digital business applications and employee productivity programs.

- Practitioner guidance on a Fast-Track approach to assessing, engineering, implementing, and operationalizing the NIST Cybersecurity Framework 800-53 controls across an enterprise and its supply chain.

- Practitioner guidance on leveraging the NIST Cybersecurity Framework, the Institutes DVMS-CPD model, and existing business systems to create a culture-driven, adaptive, cyber-resilient digital business capable of Creating, Protecting, and Delivering digital business value.

Enterprise Mentoring

The NIST Cybersecurity Framework Training & Mentoring Practice provides organizations of any size with expert guidance and training on building an adaptive cyber risk management program that is ﬁt for use, auditable for purpose, and compliant with government regulations and standards.
- NIST-CSF Awareness Training Workshop

This program introduces all employees to the fundamentals of digital business, digital business risk, and the NIST Cybersecurity Framework. - NIST-CSF Core Team Certiﬁcation Training Workshop

This program leverages the NCSP® Foundation and Practitioner certification training programs to prepare the core team for the baseline NIST-CSF cyber risk assessment.

- NIST-CSF Program Design Workshop

This program introduces the team to the fundamentals of creating the core NIST-CSF Program and Team.

- NIST-CSF Assessment Workshop

This program teaches the core team how to assess an organization’s current cyber risk management state (practices, controls, etc.) and identify the gaps that must be mitigated to realize an organization’s future cyber risk management state.

- NIST-CSF Implementation, Operations & Innovation Training Workshop

This program teaches the Implementation, Operations, and Improvement teams how to leverage the NCSP FastTrack™ model to adapt the controls and management systems necessary to support the organization’s cyber risk management plan.

- NIST-CSF Management Platform Workshop

This program helps the organization identify and select a platform to deliver the management and reporting capabilities outlined in the organization’s strategic plan.

Community of Practice

The DVMS Institute established the NIST Cybersecurity Professional (NCSP®) Community of Practice to provide its members a support network focused on helping organizations of any size build an adaptive, cyber risk management program and workforce that is fit for use, auditable for purpose and compliant with the NIST Cybersecurity Framework and other government regulations and standards.

Unlike other institutions, we do not charge fees other than those associated with the value-added services that may be offered by the Institute or its contributing member network.

The Institute enables its members to:

- Share ideas, participate in online events, and expand one’s NIST Cybersecurity Professional (NCSP®) network

- Become an NCSP Solutions provider specializing in one or more of the following NCSP specialty areas

- Content Development

- Trainer

- Consulting Mentor

- Auditor

- Implementer

- Program Manager

- Project Manager

- Executive Sponsors

- IT & Cybersecurity Subject Matter Expert

- Reseller of the NCSP programs

- Become eligible to participate in an expert-led NCSP Masters level training course that takes candidates on a deep dive into creating DVMS-CPD case studies across all the critical sectors that can be leveraged by the community in general

They are the Heartbeat of the Institute

Our NCSP® Graduates share their Experience

The NIST Cyber Security Professional (NCSP) certification that I earned this past summer supported the successful completion of a project my employer, Guidehouse Security won to help an energy company become compliant with the recently issued TSA Security Directive for Pipeline Security (2022 July 27, SD02C: Section I.1, p. 2; see also Section II.B, p. 5). This engagement required not only detailed knowledge of the NIST Framework but the application of the NIST 800-53 controls called out in the framework. We will continue to apply the sound principles, and lessons learned that underlie the NCSP certification process.

Dr. Joseph BaughAssociate Director, Risk, Compliance, & Security Energy, Sustainability and Infrastructure Practice

"THERE IS NO BETTER TRAINING AVAILABLE FOR GRC PROFESSIONALS AND IT AUDITORS" Although this program focuses on Cybersecurity Risk Management, it is the direction the entire GRC and IT Audit needs to shift towards. The systems thinking perspective and mental model approach is something that I practice and study extensively and has contributed to my personal success as a scientist, Cybersecurity Governance Advisor, and GRC professional. I'm very happy to see science and Socratic Inquiry in a technical course. Using a question/goals-based approach is not leveraged heavily in our field; therefore observing this being used in this program is both refreshing and eye-opening. I'm rarely moved and influenced by training organizations due to their limited and myopic viewpoints, but I truly believe you all are on the brink of something amazing and gamechanging. If we can create virtual labs and demonstrative scenarios to accompany this program, I'd dare say that you'd be in a league of your own!

Dr. Blake Curtis CGEIT, CRISC, CISM, CISA, CISSP, CDPSE, COBITDeloitte

The NCSP Foundation course was worth the effort. I find so much value in pursuing the APGM International NIST Cyber Security Framework Foundation Training. It is a disciplined approach to understanding and applying a sound governance process for Information Security. For an introduction it is really comprehensive.

Belkis HerreraAudit Consultant

“I was well prepared and passed the DVMS Institute NCSP Boot Camp exam on the first try. The NCSP courses helped me understand how to leverage the NIST Cybersecurity Framework to help organizations Create, protect and Deliver digital business value. The instructor, Patrick von Schlag did a great job in presenting the materials and connecting it back to real-world examples. Thank you, Lori and Rick, for all help! I will highly recommend the NCSP courses to my colleagues across the globe”

Nag H. KosuruCybersecurity Consultant

"From the beginning of the online NSCP Bootcamp course, right through to the processing of my certificate, the itSM Solutions experience was trouble-free. The training was well-organised, the content structure ensured it was easy to follow and due to the added flexibility of being online, I was able to complete the course in my own time. With easy-listening videos, course handouts that provide extra content, and quizzes designed to help solidify knowledge, the NSCP Bootcamp was a great learning experience and one that I have, and would recommend to my colleagues!

Emily Raine Major-GoldsmithCybersecurity Consultant

“Sitting the NCSP® online courses and taking the exams has allowed us to re-model our business to not only offer better cyber security solutions, but more importantly improve our communication with clients and assist them in implementing a proper cybersecurity framework based on the NIST-CSF.”

JBCybersecurity Consultant

“I will like to appreciate the team at cybersecurity-professionals.com who have put this course together it is a great course, it was very really well structured, highly informative and the course materials were excellent. I would highly recommend the NCSP® programme to all those in or looking to start a career in cyber.”

ANDirector, Information Technology

“After recently completing the online NIST Cyber Security Professional (NCSP®) Foundation Certificate and being welcomed into the online mentoring community, I would like to provide the fantastic feedback that this course deserves. The program was carefully designed and allowed me to progress at a speed that suited me as it was self-paced, this suited myself as a learner, allowing me to plan my study around work and family commitments. I found that all Chapters where well-presented and easy to understand and provided a solid foundation for understanding Cyber Risk, the NIST Cyber Security Framework alongside the core functions and Implementation Tiers. I now have a firm grasp of what I learnt and look forward to sitting the exam and progressing onto the next qualification as a NCSP® Practitioner. I have certainly benefited from completing this programme. When you have tangible end results after taking a course, I can conclude this was a great one!”

ANSenior, Cyber Security Analyst

“Having recently completed the NIST Cyber Security Professional (NCSP®) Foundation course, I found it informative, well-structured and easy to follow. The course has given me a great understanding of how the NIST Cybersecurity Framework (CSF) can be applied and how its core elements work. The course set me really well for the APMG exam and I achieved the required score without any real issues or gaps in my knowledge and I put this down to the online learning that was supported with comprehensive study documents and lessons plans. I would highly recommend both the course and the learning provider who gave me support throughout, answering many questions on my next steps. I’m now looking to complete the NCSP® Practitioners Course in the coming weeks!”

JOProject Manager (Financial Sector)

"Having been keen to break into the Cyber Security industry as a change of career direction, my research led me to the NIST Cyber Security Professional (NCSP) Programme. The Foundation course is a great entry level introduction to this framework and has already landed me my first contract. As a service leaver looking to secure my civilian future in cyber, this course was exactly what I was looking for. A great introduction to the NIST Cybersecurity Framework and I am already planning to book the Practitioner level course."

ABIT Business Analyst (Financial Sector), UK

"I've been doing a lot of security transformation work across the UK public sector and used the NIST Cybersecurity frameworks (NIST-CSF) as a reference to validate levels of capability and provide clear roadmaps for improvement. I found the on-line videos and PDF workbooks to be an excellent way to build my knowledge and interpretation of the NIST-CSF and how it can be practically applied. The balance of information about security controls and risks, alongside Digital Transformation and agile way of working through incremental improvements really resonated with me and my experience in delivering IT services across the UK public sector.”

JKConsultancy Practice Owner

“I was well prepared and passed the NCSP® Boot Camp exam on the first try. The NCSP® courses helped me learn the knowledge, skills, and capabilities to engineer, operationalize, and continually improve a cybersecurity program based on the NIST cybersecurity framework. Thank you, for all your help! I will highly recommend the NCSP® courses to my colleagues across the globe.”

NKLeading global insurance organisation with operations in more than 80 countries and jurisdictions

Why Should I Become a NIST Cybersecurity Professional?

Our global NCSP Experts share their thoughts on the value associated with becoming a NIST Cybersecurity Professional.

Organizations need to think differently

The Cyber-Resilient Enterprise

The founders of the DVMS Institute share their thoughts on what it takes to become a cyber-resilient organization capable of Creating, Protecting & Delivering digital business value.

Digital Risk Management is a Team Sport

The Cyber Resilience Team

The founders of the DVMS Institute share their thoughts on what a Cyber Resilience Team looks like and the role it plays in helping develop, implement and operationalize an organization’s digital risk governance & assurance program

It's all about Creating, Protecting and Delivering (CPD) Digital Value

The Cyber Resilience DVMS-CPD Overlay Model

The founders of the DVMS Institute share their thoughts on how the DVMS-CPD risk management overlay model enables organizations of any size to become adaptive, cyber-resilient digital businesses capable of creating, protecting, and delivering (CPD) digital business value.

David Moskowitz

Executive Director,
Content Architect

Lori Perrault

Director, Operations

David Nichols

Executive Director

Rick Lemieux

Executive Director,
Programs

100+ Years of Experience

The Faces Behind Our Success

Accreditation, Publishing and Reseller Partnerships

Our Strategic Partners