Security Awareness Blog: Category - Security Awareness Planning

Standards Requiring Security Awareness Training - Final

Folks, I'm excited to announce the first official release of "Security Awareness Compliance Requirements". This document lists all known standards and regulations that require security awareness training. Specifically you will find the name of each regulation, the section within the regulation that requires awareness training and links to more information. This is intended to … Continue reading Standards Requiring Security Awareness Training - Final


Standards Requiring Security Awareness Training

Folks, as you may have noticed we have been adding a tremendous number of new resources to our Security Awareness Resources section on the Securing The Human Website. A new page we will be adding soon is on "Business Justification", providing you the resources you need to get management support AND funding for your … Continue reading Standards Requiring Security Awareness Training


June Release of the OUCH! Security Awareness Newsletter

We just released the June issue of OUCH!, SANS' free security awareness newsletter. This monthly newsletter has a dedicated editorial board, SANS Instructors as Subject Matter Experts and a community review board, so we like to think the content is rock solid. In addition, we now translate OUCH! into ten languages, with new languages being … Continue reading June Release of the OUCH! Security Awareness Newsletter


Business Justification #2 For Security Awareness

Justifying your awareness program can be a challenge, a challenge where you may need multiple methods to demonstrate your program's value. Earlier this week we discussed comparing the resources your organization invests in protecting a standard operating system to the resources it invests in securing the Human operating system (i.e. your employees). Here is a … Continue reading Business Justification #2 For Security Awareness


Business Justification For Security Awareness

One of the biggest challenges we face in security awareness is justifying our awareness program. Awareness costs money and organizations want to see a return on their investment. Now it is no surprise this is a challenge, demonstrating ROI in any security discipline can be challenging. However it is especially true with human security as … Continue reading Business Justification For Security Awareness