Homepage
External Services
Services Provided
IS Critical Data
Awareness of Cyber Threats
Network Software and OS
Network Asset Resilience
Network Physical Security
Communications Security
Quick Look Report Display
Alternative content
How would you characterize the conduct of your users and their awareness of cyber threats?
Category
Description
Yes
No
Unsure
Trained
Users are provided routine awareness training from an accredited training team
Observed
Activity at all user terminals are nearly continuously visible to managers and supervisors
Monitored
Strict controls are monitored and automatically enforced on web browsing including disabling access to social networking, pornography, and game sites
Aware
Users are keenly aware of social engineering practices and are very unlikely to be exploited
Controlled - Portable Media
All portable media devices are disabled across the network or very strict controls in place
Controlled - Email
Incoming email attachments are individually screened or tightly controlled
Controlled - Code
Use of peer-to-peer and mobile code is effectively prevented
Identified
Enforced strong password use with frequent changes required
Authenticated
Use of secondary identification methods such as biometrics or smart cards
You are on
Page 5
of 9
