AT-02(01) Practical Exercises
Provide practical exercises in literacy training that simulate events and incidents.
Baselines
- L
- M
- H
- P
Guidance
Practical exercises include no-notice social engineering attempts to collect information, gain unauthorized access, or simulate the adverse impact of opening malicious email attachments or invoking, via spear phishing attacks, malicious web links.
Related controls 4
- CA-02 Control Assessments L M H P
- CA-07 Continuous Monitoring L M H P
- CP-04 Contingency Plan Testing L M H P
- IR-03 Incident Response Testing L M H P