Security awareness training: Why it matters
by Mirko Zorz - Editor in Chief - Friday, 21 February 2014.
What advice would you give to a CISO interested in introducing security awareness training into a large organization? What's the best way to approach such an endeavor?

Ensure that everyone is introduced to security-related procedures during the on-boarding period with an e-learning program. After that, select several ways to address security best practices frequently via different ways: a video integrated in your internal intranet e-magazine, posters, sending dilemmas to the mobile device of the employees via an awareness app, confronting employees with security situations via short videos on internal video news-screens, implementing gaming around security, etc. This can be done in a global operating company.

Be sure to support all of these actions with a program for managers (what is the role model, how is security integrated in the communication with employees?): this can be done in short workshops as a start, and followed up by addressing examples of good communication via videos used in the awareness app, for example.

Spotlight

Windows 0-day exploited in ongoing attacks, temporary workarounds offered

Posted on 22 October 2014.  |  A new Windows zero-day vulnerability is being actively exploited in the wild and is primarily a risk to users on servers and workstations that open documents with embedded OLE objects.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Thu, Oct 23rd
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //