Resilience Management Model (CERT-RMM) overview training (21 Feb, 2012)

ESICEE Editor Avatar

ESI CEE together with IDC Bulgaria presents the Managing Security and Resilience (CERT-RMM) overview training:

When: February 21, 2012 (9:00 – 18:00)
Where: ESI CEE Training Center in Business Park Sofia, Mladost 4, bldg.11B, floor 1
Instructor: Dr. George Sharkov, Director ESI CEE (member of CERT-RMM appraisal program)

This one-day training introduces the new Resilience Management Model of CERT at the Software Engineering Institute (SEI, Carnegie Mellon). CERT-RMM serves as a foundation from which an organization can measure its current competency, set improvement targets, and establish plans and actions to close identified gaps. As a result the organization would be able to reposition and repurpose its security and business continuity activities and adopt a process improvement mindset that would help keep services and assets productive in the long term.

The training will be with a particular focus on:

  • How well is your organization prepared to handle operational risk?
  • Is it about Cyber-security only and what are the current threats and vulnerabilities to our business?
  • When faced with disruption and stress, will your organization’s most important assets – people, information, technology, and facilities – stay productive?
  • If and how quickly your organization could recover to normal operations after disruptions?
  • How to assess and continuously improve our readiness to ‘handle the unknown’?

Who should attend: Managers of Services & Operations, Corporate Security (CSO), IT Security Managers (CISO); Security and business continuity professionals; Enterprise and operational risk management professionals; Service development professionals; HR and facilities management.

Information and REGISTRATION: or contact us at (+359 2) 969 30 56; email: ndicheva (at) idc (dot) com – Neli Dicheva (+359 2) 489 97 40; email: hristina (at) esicenter (dot) bg – Hristina Nikolova

Each participant will receive a certificate for the course completion by the European Software Institute CEE.

CERT-RMM comes from the creators of the set of “maturity models” – Software Engineering Institute (SEI, Carnegie Mellon), which evolved for 20 years from defense industry standards to de-facto global quality models. These are CMMI for Development, CMMI for Services and CMMI for Acquisition, as well as People CMM and the famous PSP/TSP of Watts Humphrey, and since 2010 – RMM. With similar structure, appraisal method and process improvement orientation, the RMM serves as a meta-framework based on the best practices and strong areas of multiple complementary and integration with established models and standards (like the various ISOs on Information Security, Services; CoBIT; business and IT – ITIL, SPICE; CMMI-SVC, etc.).

The 26 process areas structured in the 4 categories of the model cover and bridge the usually separated governance of corporate security, information security and business continuity. Thus, RMM is not “yet another model”, but a comprehensive and complete reference model or framework to help the organizations in maintaining the multi-standard compliances and certifications through unified enterprise policy and optimized resources and investments, without creating additional bureaucratic burden.

The examples provided and practical exercises on RMM scoping for small-mid size organizations, for sectors like banking & finances, public services, as well as international collaboration and international policies based on it will enable the participants to identify the real benefits and the suitable approach for their organizations.

For more information on the Resilience Management Model please visit: or

Skip to content