Software Bill of Materials

SAT FSSPs provide standardized skills and competencies in order to align with nationally recognized credentials, such as the National Institute of Standards and Technology (NIST) guidance and the National Initiative for Cybersecurity Education (NICE), for government Information System Security (ISS) roles. The FSSPs provide a repository of government sponsored or approved training products and sources that will reach all levels of government executives.

The current offerings are organized into two training tiers:

Tier I: General Security Awareness Training Services and Content

Security Awareness Training consists of basic security training that is mandated for all personnel in government. There are currently three designated Federal Shared Services Providers that provide this service to the federal government:


For learning management systems (LMS) integrations information, please visit the FAQ Repository (log-in required)

Tier II: Role-Based Security Training

The goal of the Tier II training is to provide specific Information Systems Security professionals with education targeted to their roles. Additionally, SAT Tier II will help agencies fulfill training requirements and ensure a skilled and capable workforce is able to perform its tasks and meet the role-based training requirements originally mandated by FISMA (2002) and OPM CFR 930.301 (2004) while following the guidance published by the Committee of National Security Systems (CNSS), NICE, and NIST. There are currently three designated Federal Shared Service Providers for role-based training:



For more information, please contact