Detections
Analytics

800-53|AT-2

Title

SECURITY AWARENESS TRAINING

Description

The organization provides basic security awareness training to information system users (including managers, senior executives, and contractors):

Supplemental

Organizations determine the appropriate content of security awareness training and security awareness techniques based on the specific organizational requirements and the information systems to which personnel have authorized access. The content includes a basic understanding of the need for information security and user actions to maintain security and to respond to suspected security incidents. The content also addresses awareness of the need for operations security. Security awareness techniques can include, for example, displaying posters, offering supplies inscribed with security reminders, generating email advisories/notices from senior organizational officials, displaying logon screen messages, and conducting information security awareness events.

Reference Item Details

Related: AT-3,AT-4,PL-4

Category: AWARENESS AND TRAINING

Family: AWARENESS AND TRAINING

Priority: P1

Baseline Impact: LOW,MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.2 Ensure 'Login Banner' is setPalo_AltoCIS Palo Alto Firewall 11 v1.0.0 L1
1.1.2 Ensure 'Login Banner' is setPalo_AltoCIS Palo Alto Firewall 9 v1.1.0 L1
1.1.2 Ensure 'Login Banner' is setPalo_AltoCIS Palo Alto Firewall 10 v1.1.0 L1
1.3.1 Set the 'banner-text' for 'banner exec'CiscoCIS Cisco IOS 16 L1 v2.0.0
1.3.1 Set the 'banner-text' for 'banner exec'CiscoCIS Cisco IOS 17 L1 v2.0.0
1.3.2 Set the 'banner-text' for 'banner login'CiscoCIS Cisco IOS 16 L1 v2.0.0
1.3.2 Set the 'banner-text' for 'banner login'CiscoCIS Cisco IOS 17 L1 v2.0.0
1.3.3 Set the 'banner-text' for 'banner motd'CiscoCIS Cisco IOS 16 L1 v2.0.0
1.3.3 Set the 'banner-text' for 'banner motd'CiscoCIS Cisco IOS 17 L1 v2.0.0
1.3.4 Set the 'banner-text' for 'webauth banner'CiscoCIS Cisco IOS 16 L1 v2.0.0
1.3.4 Set the 'banner-text' for 'webauth banner'CiscoCIS Cisco IOS 17 L1 v2.0.0
1.3.5 Ensure internal phishing protection for Forms is enabledmicrosoft_azureCIS Microsoft 365 Foundations E3 L1 v3.0.0
1.5.1 Ensure 'ASDM banner' is setCiscoCIS Cisco Firewall v8.x L1 v4.2.0
1.5.1 Ensure 'ASDM banner' is setCiscoCIS Cisco Firewall ASA 9 L1 v4.1.0
1.5.1 Ensure 'ASDM banner' is setCiscoCIS Cisco ASA 9.x Firewall L1 v1.0.0
1.5.2 Ensure 'EXEC banner' is setCiscoCIS Cisco Firewall v8.x L1 v4.2.0
1.5.2 Ensure 'EXEC banner' is setCiscoCIS Cisco Firewall ASA 9 L1 v4.1.0
1.5.2 Ensure 'EXEC banner' is setCiscoCIS Cisco ASA 9.x Firewall L1 v1.0.0
1.5.3 Ensure 'LOGIN banner' is setCiscoCIS Cisco Firewall v8.x L1 v4.2.0
1.5.3 Ensure 'LOGIN banner' is setCiscoCIS Cisco ASA 9.x Firewall L1 v1.0.0
1.5.3 Ensure 'LOGIN banner' is setCiscoCIS Cisco Firewall ASA 9 L1 v4.1.0
1.5.4 Ensure 'MOTD banner' is setCiscoCIS Cisco Firewall v8.x L1 v4.2.0
1.5.4 Ensure 'MOTD banner' is setCiscoCIS Cisco Firewall ASA 9 L1 v4.1.0
1.5.4 Ensure 'MOTD banner' is setCiscoCIS Cisco ASA 9.x Firewall L1 v1.0.0
1.7.1 Configure an MOTD (Message of the day) BannerCiscoCIS Cisco NX-OS L1 v1.0.0
1.7.2 Configure an EXEC BannerCiscoCIS Cisco NX-OS L1 v1.0.0
2.20 Ensure 'Allow Web Authentication requests on sites with broken TLS certificates' Is DisabledWindowsCIS Google Chrome L1 v3.0.0
2.22 Ensure 'Enable TLS Encrypted ClientHello' Is EnabledWindowsCIS Google Chrome L1 v3.0.0
2.29 Ensure 'Insecure Hashes in TLS Handshakes Enabled' Is DisabledWindowsCIS Google Chrome L1 v3.0.0
4.7 Ensure 'Controls the mode of DNS-over-HTTPS' is set to 'Enabled: DNS-over-HTTPS without insecure fallback'WindowsCIS Google Chrome L2 v3.0.0
5.2.4.1 Ensure 'Self service password reset enabled' is set to 'All'microsoft_azureCIS Microsoft 365 Foundations E3 L1 v3.0.0