Security Awareness Blog: Category - Security Awareness Planning

Security Awareness Top Ten Topics - #10 Hacked

This post is the tenth and final in a series of what I consider thetop ten topics for any security awareness program. Selecting the right topics with greatest value for your organization is key to a successful program.This series is not designed to tell you what your awareness program must have, instead these posts are … Continue reading Security Awareness Top Ten Topics - #10 Hacked


Security Awareness Top Ten Topics - #9 Monitoring & AUP

This post is the ninth in a series of what I consider thetop ten topics for any security awareness program. Selecting the right topics with greatest value for your organization is key to a successful program.This series is not designed to tell you what your awareness program must have, instead these posts are designed to … Continue reading Security Awareness Top Ten Topics - #9 Monitoring & AUP


Security Awareness Top Ten Topics - #8 Mobile Devices

This post is the eighth in a series of what I consider thetop ten topics for any security awareness program. Selecting the right topics with greatest value for your organization is key to a successful program.This series is not designed to tell you what your awareness program must have, instead these posts are designed to … Continue reading Security Awareness Top Ten Topics - #8 Mobile Devices


Top Five Myths of Security Awareness

In the grand scheme of things security awareness is nothing more then another security control. The only difference between awareness and other controls is awareness focuses on the human OS. For some reason it is the human factor that confuses people, resulting in a variety of misconceptions. Here I identify the five top myths why … Continue reading Top Five Myths of Security Awareness


Security Awareness - Visualizing ROI

The two most common goals I see in awareness programs are compliance and impact. The goal of compliance is to meet the requirements of certain regulations, such as HIPAA or PCI DSS. Impact means to reduce risk in your organization by changing employee behavior. To be honest I am far more interested in the second … Continue reading Security Awareness - Visualizing ROI