Security Awareness Blog: Category - Security Awareness Metrics

*sigh* - Example of Really BAD Security Awareness

Security awareness is tough. So I get frustrated when I see really bad advice published. I even get more frustrated when people know they are publishing bad advice, but continue anyways because they care about marketing, not providing value. An infographic was published on passwords, specifically "Duh, The Easiest Way to Stop Hackers is … Continue reading *sigh* - Example of Really BAD Security Awareness


Over 40% of Private Data Compromised Caused by Humans

I was playing with the site PrivacyRights.org today. This is a tremendous site where you can get valuable statistics on data breaches and compromised records. Privacy Rights collects information on all publicly available breach data, then create a simple interface where you can query that data. I did that today, with an emphasis on the … Continue reading Over 40% of Private Data Compromised Caused by Humans


Upcoming Training on Building High-Impact, Engaging Awareness Programs

Building a high-impact, engaging security awareness program can be a big challenge, there are so few planning resources and so many different skills required including communications, project management, cognitive behavior, risks assessments and metrics. As a result, most organizations have no idea where to start. If you are looking to build a new awareness program … Continue reading Upcoming Training on Building High-Impact, Engaging Awareness Programs


The Security Awareness Planning Kit - Awareness Made Simple

People often under estimate the amount of planning required to establish a high-impact security awareness program. If your goal is just compliance, you can get away with pretty minimal planning. But if you want to make a difference, if you want to truly have an impact and change behavior, you need to plan. However, many … Continue reading The Security Awareness Planning Kit - Awareness Made Simple


Primary vs. Reinforcement Training - The Key to Changing Human Behavior

Recently we have been discussing different methods of training and how to change behavior, such as the halo effect of reinforcement training. Today I wanted to take a step back and do a brief review of the two different categories of security awareness training and a simple way to compare these two categories to common … Continue reading Primary vs. Reinforcement Training - The Key to Changing Human Behavior