Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Mobile users must complete required training annually.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-28317 | WIR-SPP-006-02 | SV-36045r4_rule | PETN-1 | Low |
| Description |
|---|
| Users are the first line of security controls for CMD systems. They must be trained in using CMD security controls or the system could be vulnerable to attack. If training is not renewed on an annual basis, users may not be informed of new security procedures or may forget previously trained procedures, which could lead to an exposure of sensitive DoD information. |
| STIG | Date |
|---|---|
| General Mobile Device Policy (Non-Enterprise Activated) Security Technical Implementation Guide | 2013-03-19 |
Details
| Check Text ( C-35165r4_chk ) |
|---|
| This requirement applies to mobile operating system (OS) CMDs. All CMD users must receive required training annually. Mark as a finding if training records do not show users receiving required training at least annually. |
| Fix Text (F-30413r2_fix) |
|---|
| Complete required training annually for all CMD users. |