Security Awareness Blog: Category - Security Awareness Metrics

Awareness Summit Talk - Cheryl Conley on Phishing at Lockheed Martin

Editor's Note: Over the coming weeks we will post recaps of speakers' talks from the 3rd Annual Security Awareness Summit. Today Cheryl Conley from Lockheed Martin shares details from her talk and her experiences from the summit.If you missed the summit, consider the European Security Awareness Summit 11 November in London. The SANS summit … Continue reading Awareness Summit Talk - Cheryl Conley on Phishing at Lockheed Martin


2016 Verizon DBIR - It's About the Human

I love the Verizon DBIR. Its an amazing, free resourcethat helps you make data driven decisions on how to manageyour organization's risk. Just like in their 2015 and 2014 reports, I find the most useful section to be the categorizationof breaches by industry. For this year's report thatis Figure 22, this is where … Continue reading 2016 Verizon DBIR - It's About the Human


Where Are You in the Security Awareness Maturity Model - Indicators

As more organizations adopt and leverage the Security Awareness Maturity Model, one of the questions I'm often asked is how do I know what level my awareness program isat and how do I get to the next level? If you are not familiar with the maturity model, its a powerful way to visualize and … Continue reading Where Are You in the Security Awareness Maturity Model - Indicators


Managing Your Top Human Risks

One of the advantages working at SANS Institute is being surrounded by literally many of the world leaders in information security. At any time I can tap into a global network of experts, from forensics and malware to risk analysis and ICS attacks. One consistent thing I have learned from these people is you never … Continue reading Managing Your Top Human Risks


Developer Awareness Training: How Metrics Help

Guest Editor: Today's post is from Eric Johnson. Eric is a Senior Security Consultant at Cypress Data Defense and the Application Security Curriculum Product Manager at SANS. In this series of posts Eric will take a look at laying a foundation for Developer Security Awareness Training. In the previous post, we laid the foundation for … Continue reading Developer Awareness Training: How Metrics Help