PR.AT: Awareness and Training

Description

The organization’s personnel and partners are provided cybersecurity awareness education and are trained to perform their cybersecurity-related duties and responsibilities consistent with related policies, procedures, and agreements.

Framework Subcategories

PR.AT-1: All users are informed and trained

[csf.tools Note: Subcategories do not have detailed descriptions.]

PR.AT-2: Privileged users understand their roles and responsibilities

[csf.tools Note: Subcategories do not have detailed descriptions.]

PR.AT-3: Third-party stakeholders (e.g., suppliers, customers, partners) understand their roles and responsibilities

[csf.tools Note: Subcategories do not have detailed descriptions.]

PR.AT-4: Senior executives understand their roles and responsibilities

[csf.tools Note: Subcategories do not have detailed descriptions.]

PR.AT-5: Physical and cybersecurity personnel understand their roles and responsibilities

[csf.tools Note: Subcategories do not have detailed descriptions.]