Back to M3.3.1 - P1 - TRAINING NEEDS
Entities determine the appropriate content of security training and techniques based on the specific organizational requirements and the information systems to which personnel have authorized access. The content includes a basic understanding of the need for information security and user actions to maintain security and to respond to suspected security incidents. The content should also include advanced security information for the implementation and maintenance of information assets deployed within the entity.
Back to M3.3.1 - P1 - TRAINING NEEDS
