Security Awareness Blog: Category - Security Awareness Metrics

Top Five Most Popular Security Awareness Topics

At SANS Securing The Human we currently have over 40 topics in our security awareness training library. By breaking up our training into short modules organizations can select and use only the topics that directly apply to them. This enables organizations to create short, yet highly effective training. You can find descriptions and short video … Continue reading Top Five Most Popular Security Awareness Topics


Verizon PCI Report - Nearly 70% of Data Breaches Started With the Human

Verizon recently released their 2014 PCI Compliance Report. As stated in the introduction: "This research is based on quantitative data gathered by our qualified security assessors (QSAs) while performing baseline assessments on PCI DSS 2.0 compliance between 2011 and 2013. The companies that we assessed span many industries and countries." One of the biggest findings? … Continue reading Verizon PCI Report - Nearly 70% of Data Breaches Started With the Human


Phishing Assessments - How Targeted Should It Be?

I'm a huge fan of phishing assessments, not only are they a great way to measure the impact of your program, but a powerful way to reinforce key behaviors. However as with any tool, you have to use it correctly. A common challenge with phishing assessments is how targeted should you make the emails? Make … Continue reading Phishing Assessments - How Targeted Should It Be?


The Bad Karma of Releasing Names

One of the most exciting areas for me in the world of security awareness is metrics, we are getting better and better at measuring change in human behavior. One of the most common methods is phishing assessments, as not only are they easy to do but they address one of the most common human … Continue reading The Bad Karma of Releasing Names


Security Awareness Officer Two Day Course - MGT433

Building, maintaining and measuring an engaging security awareness program that not only ensures you are compliant but also changes behavior and reduces risk is a tough challenge. SANS MGT433 is a two day course designed to teach you how to do just that, build an awareness program that makes a difference. The course is … Continue reading Security Awareness Officer Two Day Course - MGT433