NIST 800-53 Rev. 5

AT-2(5): Literacy Training and Awareness | Advanced Persistent Threat

Control Text:

Provide literacy training on the advanced persistent threat.

An effective way to detect advanced persistent threats (APT) and to preclude successful attacks is to provide specific literacy training for individuals. Threat literacy training includes educating individuals on the various ways that APTs can infiltrate the organization (e.g., through websites, emails, advertisement pop-ups, articles, and social engineering). Effective training includes techniques for recognizing suspicious emails, use of removable systems in non-secure settings, and the potential targeting of individuals at home.

Related Controls

  • None