← Back to catalog
PM-15

Security and Privacy Groups and Associations

Program Management (PM)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description

Establish and institutionalize contact with selected groups and associations within the security and privacy communities: To facilitate ongoing security and privacy education and training for organizational personnel; To maintain currency with recommended security and privacy practices, techniques, and technologies; and To share current security and privacy information, including threats, vulnerabilities, and incidents.

Discussion

Ongoing contact with security and privacy groups and associations is important in an environment of rapidly changing technologies and threats. Groups and associations include special interest groups, professional associations, forums, news groups, users’ groups, and peer groups of security and privacy professionals in similar organizations. Organizations select security and privacy groups and associations based on mission and business functions. Organizations share threat, vulnerability, and incident information as well as contextual insights, compliance techniques, and privacy problems consistent with applicable laws, executive orders, directives, policies, regulations, standards, and guidelines.

Implementation guidance

No content available.

CSF 2.0 crosswalk
DE.AE-06Information on adverse events is provided to authorized staff and toolsDetect
ID.RA-02Cyber threat intelligence is received from information sharing forums and sourcesIdentify