Security awareness training: Why it matters
by Mirko Zorz - Editor in Chief - Friday, 21 February 2014.
What advice would you give to a CISO interested in introducing security awareness training into a large organization? What's the best way to approach such an endeavor?

Ensure that everyone is introduced to security-related procedures during the on-boarding period with an e-learning program. After that, select several ways to address security best practices frequently via different ways: a video integrated in your internal intranet e-magazine, posters, sending dilemmas to the mobile device of the employees via an awareness app, confronting employees with security situations via short videos on internal video news-screens, implementing gaming around security, etc. This can be done in a global operating company.

Be sure to support all of these actions with a program for managers (what is the role model, how is security integrated in the communication with employees?): this can be done in short workshops as a start, and followed up by addressing examples of good communication via videos used in the awareness app, for example.

Spotlight

Operation Pawn Storm: Varied targets and attack vectors, next-level spear-phishing tactics

Posted on 23 October 2014.  |  Targets of the spear phishing emails included staff at the Ministry of Defense in France, in the Vatican Embassy in Iraq, military officials from a number of countries, and more.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Oct 24th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //