DISA Control Correlation Identifier (CCI)

CCI-000116 requires that “The organization institutionalizes contact with selected groups and associations within the security community to facilitate ongoing security...

CCI-000101 requires that “The organization disseminates a security awareness and training policy to organization-defined personnel or roles.” This Control Correlation...

CCI-000117 requires that “The organization develops and documents an audit and accountability policy that addresses purpose, scope, roles, responsibilities, management...

CCI-000102 requires that “The organization reviews and updates the current security awareness and training policy in accordance with organization-defined frequency.”...

CCI-000103 requires that “The organization develops and documents procedures to facilitate the implementation of the security awareness and training policy...

CCI-000104 requires that “The organization disseminates security awareness and training procedures to organization-defined personnel or roles.” This Control Correlation Identifier...

CCI-000105 requires that “The organization reviews and updates the current security awareness and training procedures in accordance with an organization-defined...

CCI-000106 requires that “The organization provides basic security awareness training to information system users (including managers, senior executives, and contractors)...

CCI-000107 requires that “The organization includes practical exercises in security awareness training that simulate actual cyber attacks.” This Control Correlation...

CCI-000108 requires that “The organization provides role-based security training to personnel with assigned security roles and responsibilities before authorizing access...