Detections
Analytics

800-53|SA-16

Title

DEVELOPER-PROVIDED TRAINING

Description

The organization requires the developer of the information system, system component, or information system service to provide [Assignment: organization-defined training] on the correct use and operation of the implemented security functions, controls, and/or mechanisms.

Supplemental

This control applies to external and internal (in-house) developers. Training of personnel is an essential element to ensure the effectiveness of security controls implemented within organizational information systems. Training options include, for example, classroom-style training, web-based/computer-based training, and hands-on training. Organizations can also request sufficient training materials from developers to conduct in-house training or offer self-training to organizational personnel. Organizations determine the type of training necessary and may require different types of training for different security functions, controls, or mechanisms.

Reference Item Details

Related: AT-2,AT-3,SA-5

Category: SYSTEM AND SERVICES ACQUISITION

Family: SYSTEM AND SERVICES ACQUISITION

Priority: P2

Baseline Impact: HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
MS.AAD.1.1v1 - Legacy authentication SHALL be blocked.microsoft_azureCISA SCuBA Microsoft 365 Entra ID v1.5.0
MS.AAD.2.1v1 - Users detected as high risk SHALL be blocked.microsoft_azureCISA SCuBA Microsoft 365 Entra ID v1.5.0
MS.AAD.2.2v1 - A notification SHOULD be sent to the administrator when high-risk users are detected.microsoft_azureCISA SCuBA Microsoft 365 Entra ID v1.5.0
MS.AAD.2.3v1 - Sign-ins detected as high risk SHALL be blocked.microsoft_azureCISA SCuBA Microsoft 365 Entra ID v1.5.0
MS.AAD.3.6v1 - Phishing-resistant MFA SHALL be required for highly privileged roles.microsoft_azureCISA SCuBA Microsoft 365 Entra ID v1.5.0
MS.AAD.3.7v1 - Managed devices SHOULD be required for authentication.microsoft_azureCISA SCuBA Microsoft 365 Entra ID v1.5.0
MS.AAD.3.8v1 - Managed Devices SHOULD be required to register MFA.microsoft_azureCISA SCuBA Microsoft 365 Entra ID v1.5.0
MS.AAD.8.3v1 - Guest invites SHOULD only be allowed to specific external domains that have been authorized by the agency for legitimate business purposes.microsoft_azureCISA SCuBA Microsoft 365 Entra ID v1.5.0
MS.EXO.16.1v1 - At a minimum, the following alerts SHALL be enabled:microsoft_azureCISA SCuBA Microsoft 365 Exchange Online v1.5.0
MS.POWERPLATFORM.3.1v1 - Power Platform tenant isolation SHALL be enabled.microsoft_azureCISA SCuBA Microsoft 365 Power Platform v1.5.0
MS.TEAMS.1.2v1 - Anonymous users SHALL NOT be enabled to start meetings.microsoft_azureCISA SCuBA Microsoft 365 Teams v1.5.0