STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 4 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← All Controls

AT-2

Awareness and TrainingRev 5

Literacy Training and Awareness

CCI Identifiers (14)

CCI-000106Provide basic security literacy training to system users (including managers, senior executives, and contractors) as part of initial training for new users.CCI-000112Provide basic security awareness training to system users (including managers, senior executives, and contractors) when required by system changes or following organization-defined events.CCI-001479The organization provides refresher security awareness training to all information system users (including managers, senior executives, and contractors) in accordance with the organization-defined frequency.CCI-001480The organization defines the frequency for providing refresher security awareness training to all information system users (including managers, senior executives, and contractors).CCI-003766Provide basic privacy awareness training to system users (including managers, senior executives, and contractors) when required by system changes or following organization-defined events.CCI-003767Employ organization-defined awareness techniques to increase the security awareness of system users.CCI-003768Employ organization-defined awareness techniques to increase the privacy awareness of system users.CCI-003769Defines the awareness techniques for to increase security and privacy awareness of system uses.CCI-003770Update literacy training and awareness content on an organization-defined frequency.CCI-003771Update literacy training and awareness content following organization-defined event.CCI-003772Defines the frequency for updating literacy training and awareness content.CCI-003773Defines the events following updating literacy training and awareness content.CCI-003774Incorporate lessons learned from internal or external security incidents or breaches into literacy training and awareness techniques.CCI-005147Provide basic privacy literacy training to system users (including managers, senior executives, and contractors) as part of initial training for new users.

Linked STIG Checks (0)

No STIG checks reference this control.