STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← All Controls

AT-3 (3)

Awareness and TrainingRev 5organization

Role-Based Training

Control Statement

Provide practical exercises in security and privacy training that reinforce training objectives.

Supplemental Guidance

Practical exercises for security include training for software developers that addresses simulated attacks that exploit common software vulnerabilities or spear or whale phishing attacks targeted at senior leaders or executives. Practical exercises for privacy include modules with quizzes on identifying and processing personally identifiable information in various scenarios or scenarios on conducting privacy impact assessments.

CCI Identifiers (2)

CCI-002052Provide practical exercises in security training that reinforce training objectives.CCI-003790Provide practical exercises in privacy training that reinforce training objectives.

Linked STIG Checks (1)

Across 1 STIGs. Click to expand.