Overview:The organization includes security awareness training on recognizing and reporting potential indicators of insider threat. Supplemental Guidance:Potential indicators and possible precursors of insider threat can include behaviors such as... Read More
Awareness and Training (AT)
Overview:The organization provides role-based security training to personnel with assigned security roles and responsibilities:a. Before authorizing access to the information system or performing assigned duties;b. When required by information system... Read More
Overview:The organization:a. Develops, documents, and disseminates to [Assignment: organization-defined personnel or roles]:1. A security awareness and training policy that addresses purpose, scope, roles, responsibilities, management commitment,... Read More
Overview:The organization provides basic security awareness training to information system users (including managers, senior executives, and contractors):a. As part of initial training for new users;b. When required by information system changes;... Read More
Overview:The organization:a. Documents and monitors individual information system security training activities including basic security awareness training and specific information system security training; andb. Retains individual training records... Read More