Guide to Test, Training, and Exercise Programs for IT Plans and Capabilities

Published: September 21, 2006

Author(s)

Timothy Grance, Tamara Nolan, Kristin Burke, Rich Dudley, Gregory White, Travis Good

Abstract

The National Institute of Standards and Technology (NIST) developed this document in furtherance of its statutory responsibilities under the Federal Information Security Management Act (FISMA) of 2002, Public Law 107-347. This publication seeks to assist organizations in designing, developing, conducting, and evaluating test, training, and exercise (TT&E) events in an effort to aid personnel in preparing for adverse situations involving information technology (IT). The events are designed to train personnel, exercise IT plans, and test IT systems, so that an organization can maximize its ability to prepare for, respond to, manage, and recover from disasters that may affect its mission. The guide describes the design, development, conduct, and evaluation of events for single organizations, as opposed to large-scale events that may involve multiple organizations.
Citation: Special Publication (NIST SP) - 800-84
Report Number:
800-84
Pub Type: NIST Pubs

Download Paper

Keywords

contingency plan, exercise, FISMA, incident response plan, test, test, training, and exercise, training
Created September 21, 2006, Updated February 19, 2017