Security Awareness Blog: Author - lspitzner

Building a Champions Program - At the #SecAwareSummit

Editor's Note: Cassie Clarkis a security community manager for developers within Salesforce. Sheis one of the speakers for the upcoming Security Awareness Summit 2/3 Aug in Nashville, TN. Below shegives an overview on herupcoming talk onSecurity Champions. Have you heard of the employee engagement training programs called Security Champions? Ever considered starting a Security Champions … Continue reading Building a Champions Program - At the #SecAwareSummit


Gamify Your Awareness Program - At the #SecAwareSummit

Editor's Note: Graham Westbrook is the head of awareness atGeisinger Health System in PA/NJ. Heis one of the speakers for the upcoming Security Awareness Summit 2/3 Aug in Nashville, TN. Below he gives an overviewhisupcoming talk on Gamification. I entered the cybersecurity industry from the back door, you could say, having gone to school for … Continue reading Gamify Your Awareness Program - At the #SecAwareSummit


Game On - 2017 Security Awareness Summit

I am super excited to announce all systems go for the 4th annual Security Awareness Summit to be held 2/3 August in Nashville, TN. The speakers have been confirmed, the venue booked and the numbers already confirm this will be the largest summit ever. If you are involved in security awareness this is THE event … Continue reading Game On - 2017 Security Awareness Summit


*Sigh*, The Goal of Security is Good Enough

The security community is welltrained atselecting whichcontrols mitigate whichrisk. Unfortunately, that is only part of the equation, where we often fail is also determining the cost or impact of those controls. By impactI'm not just talking about the $$$ to purchase a solution, but the cost to maintain those controls, the impact due to lost … Continue reading *Sigh*, The Goal of Security is Good Enough


Time for Password Expiration to Die

Per Thorsheim, Microsoft's Dr. Cormac Herley, the UK's NCSC,the Chief Technologist at FTC,I and many others are working hard to kill password expiration. Password expiration is when an organizationrequires their staffto change their passwords every 60, 90 or XX number of days. Password expiration is also a great example of howsecurity professionals fail by simply … Continue reading Time for Password Expiration to Die