phishing

phishing Controls

4 controls across 3 frameworks.

CISA CPG

Employees are trained to recognize and report phishing attempts

Governance and Training / Governance and Training

Implement a security awareness and training program for all workforce members

Administrative Safeguards / Security Awareness and Training

Identities are proofed and bound to credentials based on the context of interactions

Protect / Identity Management, Authentication, and Access Control

Personnel are provided with security awareness training to perform their work with cybersecurity risks in mind

Protect / Awareness and Training