Description
The organization trains personnel in their contingency roles and responsibilities with respect to the information system and provides refresher training [Assignment: organization- defined frequency, at least annually].
Supplemental Guidance
None.
Changes from Rev 4
Adds text to review and update contingency training content Adds parameters for frequency of review/update and following specified events Discussion includes events that may precipitate an update to contingency training content
Compliance Mappings
ISO 27001:2022
A.5.29
ISO 27002:2022
5.29
COBIT 2019
DSS04
CSA CCM v4
BCR-04BCR-06
CSA AICM v1
BCR-04BCR-06
NIS2 Directive
Art. 21(2)(c)
MAS TRM
8
BSI IT-Grundschutz
DER.4
ANSSI
Hygiene.35Hygiene.4SecNumCloud.18.2
FINMA Circular 2023/1
IV.E(92)IV.E(93)
OSFI B-13
B-13.2.6
EU GDPR
Art.32(1)(d)
EU DORA
Art.11(6)Art.13(6)
BIO2
5.29
RBI CSF
ITGRCA.29
FISC Security Guidelines
FISC.O5
HKMA TM-E-1
TME1.6.1TME1.6.3
MLPS 2.0
8.1.10.11
DNB Good Practice
DNB.11.2
NCA ECC
3-1
UAE IA
T12
CBB TM
TM-14
Qatar NIA
BC
CBUAE
CR-13
CBE CSF
OVM-2
SA JS2
JS2-7.5
CBN CSF
Part3.7
BoG CISD
CISD-BCM
BoM CTRM
5.2
CPMI-IOSCO PFMI
CG.RRPFMI.P17
NYDFS 500
500.16
HIPAA Security Rule
§164.308(a)(7)(i)§164.308(a)(7)(ii)(D)
ECB CROE
CROE.2.5.2
EBA ICT Guidelines
3.7.4
SEBI CSCRF
BCP-DRCCMP
BOT Cyber Resilience
Ch4.2
Solvency II
DR.266-BCPEIOPA-ICT-4.10
Lloyd's Minimum Standards
MS8.6MS9.2
NAIC Insurance Data Security
4F-b
FCA SYSC 13
SYSC 13.8.1
HITRUST CSF v11
12.b12.c
ISO 27799
17.1
NHS DSPT
NDG-7.1
MiCA
Art.62(6)
Basel SCO60
SCO60.53
SEC Custody (Digital Assets)
SEC-CD-12
ISO 17799 (legacy)
14.1.314.1.4
COBIT 4.1 (legacy)
DS4.6