Security Awareness Blog: Category - Security Awareness Planning

Game On - The Security Awareness Summit Agenda is Released

Folks, I'm super excited to announce the agenda for the Security Awareness Summit 3/4 Aug in San Francisco has been released. Designed for experienced security awareness officers who want to take their security awareness program to the next level, this year's Summit will provide actionable lessons you can take back and apply right … Continue reading Game On - The Security Awareness Summit Agenda is Released


OUCH Newsletter is Out - I'm Hacked Now What?

We are excited to release the April edition of the free, OUCH security awareness newsletter. Led by Uber's Samantha Davison, wecoverthe topic I'm Hacked, Now What. More specifically, wedescribe clues you can use to tell if your system has been hacked, and, if so, what you can do about it. This is a tough topic … Continue reading OUCH Newsletter is Out - I'm Hacked Now What?


Ukrainian Grid Attack: How NERC CIP-like Measures Might Have Helped

Editor's Note: Today's guest blog is published by TedGutierrez, CISSP, GICSP, and GCIH, is the ICS & NERC CIP Product Manager at the SANS Institute and co-author of SANS ICS456 - Essentials for NERC CIP. With the recent release of the E-ISAC and SANS ICS Defense Use Case (DUC) #5 which analyzed the cyber-attack that … Continue reading Ukrainian Grid Attack: How NERC CIP-like Measures Might Have Helped


ES-ISAC Changes Require Plan Updates

Guest Editor: This guest post is by the ever wiseTed Gutierrez whois the ICS & NERC CIP Product Manager at the SANS Institute and co-author of SANS ICS456 - Essentials for NERC CIP Did you hear about the NERC registered entity that got a PV for failing to update the Cyber Security Incident response plan … Continue reading ES-ISAC Changes Require Plan Updates


Defining the Security Awareness Maturity Model

Last week we introduced the Security Awareness Maturity Model.Established in 2011, this maturity model enables organizations to identify where their security awareness program is currently at, where a qualified leader can take it and the path how to get there. Below we describe each stage of the maturity model. As you go through each … Continue reading Defining the Security Awareness Maturity Model