Cybersecurity awareness objectives are aligned with the defined threat profile (THREAT-2e)
Context and Guidance: To align cybersecurity awareness objectives with the defined threat profile, analyse the threat profile to understand the targeted assets, objectives, and attack methods that may be employed by threat actors. This supports identification of the types and extent of awareness efforts necessary to address threats relevant to function. For example, if the threat profile includes a threat involving spear phishing, awareness content could be created on that topic.
Related Practices • Dependency: Implementing this practice depends upon prior implementation of THREAT-2e. • Progression: This practice is part of a practice progression. Practice progressions are groups of related practices that represent increasingly complete or more advanced implementations of an activity. The practices in this progression include: WORKFORCE-2a, WORKFORCE-2b, WORKFORCE-2c, WORKFORCE-2d, WORKFORCE-2e, WORKFORCE-2f, WORKFORCE-2g.