AuditRubric
awareness

awareness Controls

3 controls across 2 frameworks.

CISA CPG

gov-3

Employees are trained to recognize and report phishing attempts

Governance and Training / Governance and Training

SOC2

cc1-4

Commitment to competence in security is demonstrated

Security / Control Environment
cc2-2

Security information is communicated internally

Security / Communication and Information