Incorporate simulated events into contingency training to facilitate effective response by personnel in crisis situations.
|
|
| Control Identifier | CP-3(1) |
| Latest Sync Date | 19/12/24 09:18:14 |
| Discussion | The use of simulated events creates an environment for personnel to experience actual threat events, including cyber-attacks that disable websites, ransomware attacks that encrypt organizational data on servers, hurricanes that damage or destroy organizational facilities, or hardware or software failures. |
| Related Controls | None. |