Assessment Evaluation and Standardization Program

The role and mission of the Assessment Evaluation and Standardization (AES) program is to increase the quality and quantity of cyber professionals who can execute CISA cyber assessments.

Training assessors to conduct CISA standard Cyber Risk Assessment methodologies is a major step in setting up an ecosystem that is critical to the success of performing cyber assessments, and in providing national-level data views that drive initiatives to reduce risk.

The approach assists all .GOV and .MIL and critical Infrastructure to include SLTT, Public, and Private Organizations.

The AES program accomplishes this mission by:

• producing a federal, and private sector, workforce of prepared and qualified assessors.
• ensuring that assessors have the knowledge and skills necessary to conduct assessments according to the CISA standards and methodologies.
• confirming that assessment results are of high quality, consistent, and repeatable.

AES Program Overview

AES has created a detailed video overview of the AES program.  We strongly encourage all prospective students review this video to learn more about the AES program, prerequisites, and qualification requirements.

AES Training Process

Each student in the AES program will follow the steps below based on AES role and course to become an AES qualified assessor.

AES Course Schedule

AES FY24 Training Course Schedule

Register for an AES Course

Follow the instructions below to register, enroll, and participate in an AES course.

1. Log in to your Defend Cyber Moodle account.

• Open Defend Cyber Moodle and log in to your account.
• If you do not have a Defend Cyber Moodle account, follow the instructions in the AES Moodle Quick Start Guide to create your account.
• If you have a Defend Cyber Moodle account, but need to reset your password, follow the instructions in the AES Moodle Quick Start Guide to reset your password.

2. Select and complete all prerequisite(s).

• Choose the prerequisite(s) for the AES course(s) you want to take.
• For students who want to participate in the RVA Operator training course, enroll in and pass the Operator Skills Test (OST). You have three attempts in 24 hours to pass the OST with a score of 70% or higher.
• For all students, enroll in and pass the Candidate Evaluation (CE) multiple choice exam. You have three attempts to pass the CE with a score of 70% or higher.
• You must complete all prerequisites at least 60 days prior to the course start date.
• AES encourages all students to complete the prerequisites and to enroll in the course as soon as possible. AES course enrollment is first come, first served.

3. Enroll in your AES course(s).

• After you pass the CE and OST (if applicable), enroll in the AES course(s) in Defend Cyber Moodle.
• If your enrollment is successful, Defend Cyber Moodle will send you an enrollment confirmation email, and you will have access to course materials in Defend Cyber Moodle.
• AES encourages all students to enroll in the courses as soon as possible. AES course enrollment is first come, first served.

AES Program Resources

1. AES Fact Sheet
2. AES Program Overview
3. AES Welcome Letter
4. AES Code of Ethics and Compliance
5. AES Moodle Quick Start Guide
6. AES Assessment Roles
7. AES HVA Qualification Policy
8. AES NT1 HVA Program Training and Qualification Process
9. AES FY24 Training Course Schedule

Contact

To ask a question or provide other feedback on AES training, contact us at AEStraining@hq.dhs.gov