Implementation Objective
Strengthen workforce security behavior through targeted training, simulations, and corrective coaching.
NIST CSF 2.0 Category
PR.AT Awareness and Training
PR Protect | Build user and role-based skills to reduce human risk.
Implementation Actions
- Run baseline and role-specific training.
- Conduct simulation exercises.
- Track remediation for repeat failures.
Evidence Examples
- Training records
- Simulation reports
- Remediation actions
Suggested Metrics
- Training completion
- Simulation failure trend
Framework Crosswalk
Direct mappings for this CSF category into NIST SP 800-171 family sections and CIS Controls v8 implementation domains.