Security Awareness Blog: Category - Security Awareness Planning

OUCH Newsletter is Out - CEO Fraud

We are excited to announce this month's OUCH! security awareness newsletter - CEO Fraud. We chose this topic due to the dramatic rise in CEO Fraud attacks. What makes these attacks so powerful is that not only are they targeted, but most security technologies fail to detect them, there are nomalicious links or infected attachments … Continue reading OUCH Newsletter is Out - CEO Fraud


NERC CIP Compliance - The Challenge Is Just Beginning

Editor's Note: Today's guest blog is published by Ted Gutierrez, CISSP, GICSP, and GCIH, is the ICS & NERC CIP Product Manager at the SANS Institute and co-author of SANS ICS456 - Essentials for NERC CIP. Anyone familiar with the NERC Critical Infrastructure Protection (CIP) standards is painfully aware that July 1, 2016 is … Continue reading NERC CIP Compliance - The Challenge Is Just Beginning


European Sec Awareness Summit - Call For Papers

I'm super excited to officially announce the Call For Papers for the European Security Awareness Summit to be held in London on Friday, 11 November. If you are actively involved in building yoursecurity awareness program, or you have expertise and experience in helping others build their programs, we want to hear from you. We are … Continue reading European Sec Awareness Summit - Call For Papers


Managing Your Top Three Human Risks

Akey requirement to amature security awareness program is identifying yourtop human risks and focuson just those risks. Far too often organizations randomly picktheir topics based on the latest attacks they see in the news or attempt to eliminate all human risk bycovering a myriad of topics. As a result, employees are bombarded with numerous, haphazard … Continue reading Managing Your Top Three Human Risks


The Security Awareness Planning Kit

One of themost common reasons we see organization's fail to establish a mature security awareness programis they fail to start witha plan. You can easily spotsuch anawareness program, theyrandomly pick the topics they communicate, they communicate only a fewtimes a year, they make little if any effort to understand and engage their audience, and … Continue reading The Security Awareness Planning Kit