Security Awareness Blog: Category - Security Awareness Planning

What the Gartner Magic Quadrant on Awareness Tells Us

As some of you may have noticed, last week Gartner released it's Magic Quadrant report on Security Awareness Training. Every year Gartner does an analysis of the top security awareness vendors and rates them via the Magic Quadrant. While I'm excited to see SANS Securing The Human once again listed at the very top of … Continue reading What the Gartner Magic Quadrant on Awareness Tells Us


Three Simple Steps to Securing Your Home Smart Devices

Editors Note: This blog post is part of Week 04 of #CyberAware month and the #NCSAM Planning Kit. Connected technologies, smart devices, Internet of Things (IoT) - they all mean the same thing. Every day devices that you commonlyuse butare also connected to the Internet. These aredevicessuch as baby monitors, security cameras, thermostats, DVRs, light … Continue reading Three Simple Steps to Securing Your Home Smart Devices


Beyond Phishing: Understand the Principles of Social Engineering

Jane works in the accounting department of a medium sized manufacturing company and just completed her annual awareness training before heading home. She passed the phishing module with flying colors and felt ready for any email type attack that may come her way. While retrieving her keys shereceived a phone call on her mobile phone. … Continue reading Beyond Phishing: Understand the Principles of Social Engineering


What IoT (and Security) Needs to Learn From the DeWalt Mitre Saw

I recently purchased my first power tool ever, a DeWalt Compound Mitre Saw, an intimidating piece of machinery that can not only rip through huge pieces of wood, but potentially chop your hand/arm clean off. As such I was very nervous when I received it, to include reading through the safety manual several times … Continue reading What IoT (and Security) Needs to Learn From the DeWalt Mitre Saw


Why Bruce is Wrong About "Fixing" the User

Recently Bruce Schneier posted a blog titled "Security Design: Stop Trying to Fix the User". As usual, Bruce raises some interesting points that are well thought out. What is unusual in this case is I strongly disagree with him. I've known and respected Bruce for over 15 years now (he was one of … Continue reading Why Bruce is Wrong About "Fixing" the User