This bulletin summarizes the information provided in NIST SP 800-84, concerning the need to design, develop, conduct, and evaluate Test, Training, and Exercise (TT&E) activities. The bulletin provides information on how organizations can prepare for, respond to, manage, and recover from adverse events, which could disrupt operations and interfere with the conduct of the organization¿s business, by developing TT&E programs. Topics covered include TT&E actions that individual organizations can manage within their overall IT planning or within their emergency-handling capabilities for IT. Other topics covered include the role of training in a TT&E program and the relationship of training to exercises and tests.
This bulletin summarizes the information provided in NIST SP 800-84, concerning the need to design, develop, conduct, and evaluate Test, Training, and Exercise (TT&E) activities. The bulletin provides information on how organizations can prepare for, respond to, manage, and recover from adverse...
See full abstract
This bulletin summarizes the information provided in NIST SP 800-84, concerning the need to design, develop, conduct, and evaluate Test, Training, and Exercise (TT&E) activities. The bulletin provides information on how organizations can prepare for, respond to, manage, and recover from adverse events, which could disrupt operations and interfere with the conduct of the organization¿s business, by developing TT&E programs. Topics covered include TT&E actions that individual organizations can manage within their overall IT planning or within their emergency-handling capabilities for IT. Other topics covered include the role of training in a TT&E program and the relationship of training to exercises and tests.
Hide full abstract
Keywords
functional exercises; information security; information technology; planning; security policies; tabletop exercises; tests; training; TT&E