SCF - SAT-03 - Role-Based Cybersecurity & Data Privacy Training
Mechanisms exist to provide role-based cybersecurity & data privacy-related training:
- Before authorizing access to the system or performing assigned duties;
- When required by system changes; and
- Annually thereafter.
Mapped framework controls
ISO 27002
- A.5.4
- A.6.3
NIST 800-53
Control questions
Does the organization provide role-based cybersecurity & data privacy-related training:
- Before authorizing access to the system or performing assigned duties;
- When required by system changes; and
- Annually thereafter?