Last week on the infamous podcast series Pauldotcom I was fortunate enough to join an amazing group of security professionals to discuss if security awareness is worth the time and effort. If you have not listened to Pauldotcom before, definitely try them out. No Political Correctness there, people definitely speak their minds. The podcast included … Continue reading Security Awareness - Is 95% Good Enough?
Dropbox is the 800 pound gorilla of the Cloud world, so they are the target when they do things wrong, as I and others have pointed out in the past. But let's also commend them for when they do things right. Last week Dropbox enabled two-factor authentication for their users and I've been trying it … Continue reading Dropbox Gets Two-Factor Authentication Right
Folks, we are already planning the OUCH! security awareness newsletter for next year, 2013. We need your help deciding which security topics we should cover. What security challenges do you want to learn more about, how can we best help you, your family or your co-workers? Email us at firstname.lastname@example.org with your suggestions on what … Continue reading What Topics do You Want OUCH! To Cover Next Year?
Folks, I am very excited to announce Securing The Human has a new section dedicated just to security awareness metrics. Measuring peoples' awareness and risk is one of the biggest challenges in our field, and we hope these free resources can help your program grow. As always, these free resources are by the community for … Continue reading Security Awareness Metrics - Measuring Human Risk
Earlier this week we talked about the upcoming National Cyber Security Awareness month in October and how to leverage it. One idea I would like to add is the "Security Checkup Booth". The idea is this. Create a booth in a high traffic area of your organization, perhaps near the cafeteria, lobby or major entrance/exit … Continue reading Awareness Month - Host a 'Security Checkup' Booth