[Superseded by SP 800-16 (April 1998): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=151633
] This guideline provides a framework for determining the training needs of employees involved with computer systems. It describes the learning objectives of agency computer security training programs. A focus on learning objectives--what the employee should know and be able to direct or actually perform--is a generic way to write the guidelines so that agencies may use the guidance in developing, acquiring, evaluating, and selecting training courses in computer security that fit the agency environment. This approach also allows agencies to state clearly the purpose of the training so that effectiveness can be measured by determining how many of the learning objectives have been met.