An error occurred:

CCI-003789

CCI-003789 Definition

Incorporate lessons learned from internal or external security incidents or breaches into role-based training.
Status
Type CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Determine if lessons learned from internal or external security incidents or breaches are incorporated into role-based training.

Validation Procedures

Examine: [SELECT FROM: System security plan; privacy plan; security and privacy awareness and training policy; procedures addressing security and privacy training implementation; codes of federal regulations; security and privacy training curriculum; security and privacy training materials; training records; other relevant documents or records]. Interview: [SELECT FROM: Organizational personnel with responsibilities for role-based security and privacy training; organizational personnel with assigned system security and privacy roles and responsibilities]. Test: [SELECT FROM: Mechanisms managing role-based security and privacy training].