💼 AT-3 ROLE-BASED SECURITY TRAINING
- Contextual name: 💼 AT-3 ROLE-BASED SECURITY TRAINING
- ID:
/frameworks/nist-sp-800-53-r4/at/03 - Located in: 💼 AT AWARENESS AND TRAINING
Description​
The organization provides role-based security training to personnel with assigned security roles and responsibilities: AT-3a. Before authorizing access to the information system or performing assigned duties; AT-3b. When required by information system changes; and AT-3c. [Assignment: organization-defined frequency] thereafter.
Similar​
- Internal
- ID:
dec-c-6e19dcd6
- ID:
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 NIST CSF v1.1 → 💼 PR.AT-2: Privileged users understand their roles and responsibilities | ||||
| 💼 NIST CSF v1.1 → 💼 PR.AT-4: Senior executives understand their roles and responsibilities | ||||
| 💼 NIST CSF v1.1 → 💼 PR.AT-5: Physical and cybersecurity personnel understand their roles and responsibilities |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 AT-3 (1) ENVIRONMENTAL CONTROLS | ||||
| 💼 AT-3 (2) PHYSICAL SECURITY CONTROLS | ||||
| 💼 AT-3 (3) PRACTICAL EXERCISES | ||||
| 💼 AT-3 (4) SUSPICIOUS COMMUNICATIONS AND ANOMALOUS SYSTEM BEHAVIOR |