Twice a year the SANS Securing The Human team and our Board of Advisors do a complete review of every module in our security awareness training. One topic that proves to be a challenge every time is what do we teach people about passwords? This is a very hot and every changing topic, and to … Continue reading The Challenge of Security Awareness Training on Passwords
Building, maintaining and measuring a high-impact Security Awareness Program requires a great deal of planning and hard work. Often organizations find themselves overwhelmed, under resourced and do not know where to start. That is why we developed the community based resource the Security Awareness Roadmap. The Roadmap identifies the five stages to a mature security … Continue reading New Planning Resource - The Interactive Security Awareness Roadmap
As a security awareness officer I'm always interested in new ways to improve awareness training. As a father of three I'm always doing the same, but for my kids. In many ways securing your kids at home faces the same challenges at work. You create an Acceptable Use Policy, you ensure your kids understand and … Continue reading Two Lessons Learned for Keeping Your Kids Safe Online
One of the levers we have to changing behaviors is reward and punishment. Reward behaviors we want to encourage, punish behaviors we want to stop. But which one is more effective, and which ones should we use? To be honest, this is a complex question and in part depends on your environment. However this is … Continue reading Reward vs Punishment - Which is Best for my Awareness Program?
A key step to any successful security awareness program is to regularly collect feedback and use that feedback to improve your program. In fact updating is stage four of the Security Awareness Roadmap. By constantly updating your program not only are you ensuring that it is current, but you keep the program engaging. With … Continue reading How to Get Actionable Feedback on Your Security Awareness Program