CISA - Protection of Information Assets - Section 5.2
Evaluate security awareness training and programs and information system attack methods and techniques.
Recognise the components of an effective security awareness training programme and how it reduces the risk of social engineering and human error. Distinguish common IS attack methods and techniques - such as phishing, ransomware and insider threats - and the threat actor categories associated with each.
security awareness trainingattack methodsattack techniquesthreat actors
More in this domain
Back to all Protection of Information Assets objectives, or the CISA cert hub.
Examworthy is not affiliated with or endorsed by ISACA. Original, blueprint-aligned practice material only.