Security awareness training: Why it matters
by Mirko Zorz - Editor in Chief - Friday, 21 February 2014.
What advice would you give to a CISO interested in introducing security awareness training into a large organization? What's the best way to approach such an endeavor?

Ensure that everyone is introduced to security-related procedures during the on-boarding period with an e-learning program. After that, select several ways to address security best practices frequently via different ways: a video integrated in your internal intranet e-magazine, posters, sending dilemmas to the mobile device of the employees via an awareness app, confronting employees with security situations via short videos on internal video news-screens, implementing gaming around security, etc. This can be done in a global operating company.

Be sure to support all of these actions with a program for managers (what is the role model, how is security integrated in the communication with employees?): this can be done in short workshops as a start, and followed up by addressing examples of good communication via videos used in the awareness app, for example.

Spotlight

Unpatched, vulnerable PDF readers leave users open to attack

Unpatched, vulnerable PDF readers are a big security issue for private PC users. 14% of PC users in the US have an unpatched operating system, and that Oracle Java yet again tops the list of applications exposing PCs to security risks.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Fri, May 1st
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //