graphgrc

SCF - GOV-07 - Contacts With Groups & Associations

Mechanisms exist to establish contact with selected groups and associations within the cybersecurity & data privacy communities to:

• Facilitate ongoing cybersecurity & data privacy education and training for organizational personnel;
• Maintain currency with recommended cybersecurity & data privacy practices, techniques and technologies; and
• Share current cybersecurity and/or data privacy-related information including threats, vulnerabilities and incidents.

Mapped framework controls

GDPR

• Art 40.2
• Art 41.1
• Art 42.2
• Art 42.3
• Art 43.2

ISO 27002

• A.5.6

Control questions

Does the organization establish contact with selected groups and associations within the cybersecurity & data privacy communities to:

• Facilitate ongoing cybersecurity & data privacy education and training for organizational personnel;
• Maintain currency with recommended cybersecurity & data privacy practices, techniques and technologies; and
• Share current cybersecurity and/or data privacy-related information including threats, vulnerabilities and incidents?

This site is open source. Improve this page.