Security Awareness Blog: Category - Security Awareness Planning

Two New Awareness Posters - For Developers and Utilities

We released two new awareness posters for the community. Neither poster will solve world hunger, but they may be a handy reference for your organization. NERC CIP Mapping to Critical Security Controls: This poster identifies all the different NERC CIP Reliability Standards (versions 3, 4 and 5) and maps them against the Critical Security Controls. … Continue reading Two New Awareness Posters - For Developers and Utilities


Awareness Newsletters, Posters, and Blog Posts - Lame?

A common misconception I run into with awareness materials is they cannot change behaviors. For example, posters. We released a new security awareness poster called "You Are A Target", which explains to Ordinary Computers Users why they are a target and identifies all the different ways criminals can make money off of you. This is … Continue reading Awareness Newsletters, Posters, and Blog Posts - Lame?


Two New Security Awareness Programs

At SANS Securing The Human our goal is to provide the most effective awareness training possible. As we work with hundreds of organizations around the world we are seeing a growing need for more specialized awareness training. While we continue to provide a foundation for end users and numerous compliance standards, we have added two … Continue reading Two New Security Awareness Programs


*sigh* - Example of Really BAD Security Awareness

Security awareness is tough. So I get frustrated when I see really bad advice published. I even get more frustrated when people know they are publishing bad advice, but continue anyways because they care about marketing, not providing value. An infographic was published on passwords, specifically "Duh, The Easiest Way to Stop Hackers is … Continue reading *sigh* - Example of Really BAD Security Awareness


Feb. OUCH! Newsletter is Out - Email Phishing Attacks

The February edition of the OUCH! security awareness newsletter is out. As always, you are free to use this newsletter within your organization as part of your security awareness program, or share with your family and friends. In addition, we know and understand that security awareness is a global challenge, as such we now publish … Continue reading Feb. OUCH! Newsletter is Out - Email Phishing Attacks