A document entitled “Building an Information Technology Security Awareness and Training Program” succinctly defines why security education and training are so important for users. The document defines ways to improve the security operations of an organization. Which document is being described?

Oct 10, 2023 Last Updated: Oct 10, 2023 No Comments
Tweet Share Pin it
IT Questions BankCategory: Ethical HackerA document entitled “Building an Information Technology Security Awareness and Training Program” succinctly defines why security education and training are so important for users. The document defines ways to improve the security operations of an organization. Which document is being described?

A document entitled "Building an Information Technology Security Awareness and Training Program" succinctly defines why security education and training are so important for users. The document defines ways to improve the security operations of an organization. Which document is being described?

  • NIST SP 800-50
  • NIST SP 800-115
  • OWASP WSTG
  • CVSS

Explanation: User training is an example of operational controls often allowing organizations to improve security operations. A user should have the training and provide written acknowledgment of rights and responsibilities before being granted access to information and information systems. The National Institute of Standards and Technology (NIST) published Special Publication 800-50, "Building an Information Technology Security Awareness and Training Program," which succinctly defines why security education and training are important.

Exam with this question: 9.5.3 Quiz - Reporting and Communication Answers

Subscribe
Notify of
guest

0 Comments
Inline Feedbacks
View all comments
0
Would love your thoughts, please comment.x
()
x