Security Awareness Blog: Category - Security Awareness Planning

Security Awareness Roadmap - DRAFT

Several weeks ago I posted about the the Security Awareness Maturity Model. This consensus project was driven by a need for organizations to be able to easily identify how mature their awareness program was, and where they needed to take it. Over twenty organizations help develop the maturity model. Now we have taken the … Continue reading Security Awareness Roadmap - DRAFT


July OUCH! Free Awareness Newsletter

Folks, I'm always excited to announce the latest OUCH!, what I consider to be one of the most effective, free resources out there for security awareness. Every month we have a new Subject Matter Expert take the lead on OUCH! based on a current topic. Once drafted by our Subject Matter Expert, the newsletter is … Continue reading July OUCH! Free Awareness Newsletter


Dooh! - Missed a Sticker Submission

Apologies go out to Richard Beach, we missed his entry for the Security Awareness Sticker challenge. While it is too late to judge his entry, I've added it to the challenge submissions document and listed it below. By the way be sure to check out his website on security awareness at www.8thlayersecurity.com, Richard has some … Continue reading Dooh! - Missed a Sticker Submission


Security Awareness Sticker Challenge - Results

Folks, two weeks ago we announced our Security Awareness Sticker contest. We challenged you, the community, to see who could come up with the most creative and engaging Security Awareness stickers. Today we are excited to announce the results. Twelve people submitted almost 40 great ideas, so it was very tough selecting the winners. However … Continue reading Security Awareness Sticker Challenge - Results


Establishing Phishing Assessment Programs

In the past I've posted about the tremendous value of phishing assessments, both as a tool to measure the impact of your awareness program and as a tool to reinforce key behaviors. While sending out a single phishing email is relatively simple, establishing a long-term phishing assessment program is difficult, it takes a great deal … Continue reading Establishing Phishing Assessment Programs