The organization defines the frequency for providing refresher security awareness training to all information system users (including managers, senior executives, and contractors).
No STIG checks reference this CCI.