SAT-04 ยท Cybersecurity & Data Protection Training Records

Control Description

Mechanisms exist to document, retain and monitor individual training activities, including basic cybersecurity and data protection awareness training, ongoing awareness training and specific-system training.

Control Question
Assessment question for control validation

Does the organization document, retain and monitor individual training activities, including basic cybersecurity and data protection awareness training, ongoing awareness training and specific-system training?

Control Weighting
9
Validation Cadence
Annual
NIST CSF Function
Protect
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Tier 2 - Operational
Core Control Designations
Special designations and baseline inclusions
MAD: SAT-04
ESP Level 1: SAT-04
ESP Level 2: SAT-04
ESP Level 3: SAT-04
Additional Metadata
Applicability (Process):
x
Errata & Additional Notes

- renamed - wordsmithed control