Skip to main content

πŸ’Ό PR.AT-3: Third-party stakeholders (e.g., suppliers, customers, partners) understand their roles and responsibilities

  • Contextual name: πŸ’Ό PR.AT-3: Third-party stakeholders (e.g., suppliers, customers, partners) understand their roles and responsibilities
  • ID: /frameworks/nist-csf-v1.1/pr-at/03
  • Located in: πŸ’Ό Awareness and Training (PR.AT)

Description​

Empty...

Similar​

  • Sections
    • /frameworks/iso-iec-27001-2013/06/01/01
    • /frameworks/iso-iec-27001-2013/07/02/01
    • /frameworks/iso-iec-27001-2013/07/02/02
    • /frameworks/nist-sp-800-53-r4/ps/07
    • /frameworks/nist-sp-800-53-r4/sa/09
    • /frameworks/nist-sp-800-53-r4/sa/16
  • Internal
    • ID: dec-c-5489f193

Similar Sections (Take Policies From)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό ISO/IEC 27001:2013 β†’ πŸ’Ό A.6.1.1 Information security roles and responsibilities
πŸ’Ό ISO/IEC 27001:2013 β†’ πŸ’Ό A.7.2.1 Management responsibilities
πŸ’Ό ISO/IEC 27001:2013 β†’ πŸ’Ό A.7.2.2 Information security awareness, education and training
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό PS-7 THIRD-PARTY PERSONNEL SECURITY
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SA-9 EXTERNAL INFORMATION SYSTEM SERVICES5
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SA-16 DEVELOPER-PROVIDED TRAINING

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό NIST CSF v2.0 β†’ πŸ’Ό PR.AT-01: Personnel are provided with awareness and training so that they possess the knowledge and skills to perform general tasks with cybersecurity risks in mind7
πŸ’Ό NIST CSF v2.0 β†’ πŸ’Ό PR.AT-02: Individuals in specialized roles are provided with awareness and training so that they possess the knowledge and skills to perform relevant tasks with cybersecurity risks in mind

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags