The more I work with the security community on the human element, the more I realize we face what is called the "Curse of Knowledge". The idea behind this theory is that the more you know about a subject, the more difficult it is for you to understand how others perceive it. I first learned … Continue reading We Face the "Curse of Knowledge"
Editors Note: Today's guest post is from Angela Pappas. Angela helps lead the awareness program at Thomson Reuters, a global organization with over 58,000 people. In this series of blogs Angela shares with us how she established their Security Ambassador Program. About a month ago I wrote a blog about the Information Security Ambassador program … Continue reading Motivating Staff to Join the Awareness Cause: What the Ambassador Pilot Taught Us
A theme I sometimes hear from people in the the security community is you can't patch stupid. That "End Users" are too dumb or ignorant to be secured. Wow, I can't think of a more unfounded, prejudice statement. First, "End Users" are people like you and me, so I suggest we start calling them that. … Continue reading Can't Patch Stupidity? Look in the Mirror
Editors Note:Today's guest post is fromAngela Pappas. Angela helps lead the awareness program atThomson Reuters, a global organization with over 58,000 people. In this series of blogs Angela shares with us how she established their Security Ambassador Program. Since the inception of my role in 2012 as a part of the information security training and … Continue reading Motivating Staff to Join the Awareness Cause
One of the biggest challenges I see security awareness programs face is poor communication. Most organizations know what their top human risks are and they know what behaviors are needed to address those risks. Where they fail is how they communicate these issues to their employees and staff. The book Made to Stick by brothers … Continue reading Book Review - Made to Stick