Conduct crime prevention training.

Back

CONTROL ID
06350

CONTROL TYPE
Behavior

CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS

This Control directly supports the implied Control(s):

Establish, implement, and maintain training plans., CC ID: 00828

There are no implementation support Controls.

SELECTED AUTHORITY DOCUMENTS COMPLIED WITH

O84: The organization shall conduct disaster prevention and crime prevention training. O84.2(1): The organization shall provide disaster prevention and crime prevention training to employees, contracted staff, and other personnel at the computer center, head offices, and branch offices. O84.2(2): T… (O84, O84.2(1), O84.2(2), O84.3, O97, FISC Security Guidelines on Computer Systems for Banking and Related Financial Institutions, 7th Edition)
To ensure that the organizations for disaster prevention and crime prevention work properly, disaster prevention and crime prevention training should be conducted against emergency. (C17.1. ¶ 1, FISC Security Guidelines on Computer Systems for Financial Institutions, Ninth Edition, Revised March 2020)
Threats relating to reconnaissance should be mitigated by briefing internal staff that may be targeted by criminals (e.g., members of the organization's governing body (e.g., members of the board or equivalent), executive management, or staff that are likely to have privileged access, such as key ho… (CF.11.02.03b, The Standard of Good Practice for Information Security)
Threats relating to reconnaissance should be mitigated by briefing internal staff that may be targeted by criminals (e.g., members of the organization's governing body (e.g., members of the board or equivalent), executive management, or staff that are likely to have privileged access, such as key ho… (CF.11.02.03b, The Standard of Good Practice for Information Security, 2013)