Security Awareness Blog: Category - Security Awareness Metrics

Failing a Phishing Test - Rite of Passage

After several years of running phishing programs and working with other organization's on theirs, I'm starting to notice a trend. Sooner or later everyone falls victim to a phishing assessment. Heck, even I fell victim to a phishing assessment once, and it was my own assessment (happy to share that story, but the price is … Continue reading Failing a Phishing Test - Rite of Passage


Aligning HR With Secure Behaviors

One of the ideas I pulled from John Kotter's book Leading Change was a suggestion on Human Resources. Have your HR team align performance evaluations, compensation, or promotions based on peoples' security behaviors. This does two things. First, it increases motivation because people see an actual, tangible gain by changing their behaviors. But even more … Continue reading Aligning HR With Secure Behaviors


Phishing Assessment Bag of Tricks

Editor's Note: This is a guest Blog Post from Cheryl Conley, head of Lockheed Martin's Security Education and Awareness team. Lockheed is one of the most targeted (and phished) organizations in the world. Below are her thoughts on Phishing as she wraps up 2014. I hope everyone survived NCSAM, we at Lockheed had a very … Continue reading Phishing Assessment Bag of Tricks


Security Awareness Survey Update

Folks, as some of you know in October for National Cyber Security Awareness Month we released the first ever Security Awareness Survey for Security Awareness Officers. Over 200 people responded, which was an amazing number. We had hoped to release the results of the survey this week but have ran into two challenges, to be … Continue reading Security Awareness Survey Update


Poster from Ft. Meade Alliance on Need For Employee Cyber Training

The folks from the Ft. Meade Alliance have posted both an interesting blog post and infographic on the Defense Department's approach and need for employee cyber security training, and how that compares to the civilian world. Long story short, looks like the military folks may be ahead of the game compared to corporate world. You … Continue reading Poster from Ft. Meade Alliance on Need For Employee Cyber Training