Security Awareness Blog

OUCH! Newsletter - Gaming Online Safely and Securely

Folks, this month's OUCH! newsletter is out. For this month we focused on something a bit different, online gaming. Gaming online is a fantastic way to have fun and meet others, but it does come with it's own set of unique risks, especially for kids. Surprisingly, the majority of these risks are not technical but … Continue reading OUCH! Newsletter - Gaming Online Safely and Securely


Developer Awareness Training: How Metrics Help

Guest Editor: Today's post is from Eric Johnson. Eric is a Senior Security Consultant at Cypress Data Defense and the Application Security Curriculum Product Manager at SANS. In this series of posts Eric will take a look at laying a foundation for Developer Security Awareness Training. In the previous post, we laid the foundation for … Continue reading Developer Awareness Training: How Metrics Help


What Should Developer Security Awareness Training Look Like?

Guest Editor: Today's post is from Eric Johnson. Eric is a Senior Security Consultant at Cypress Data Defense and the Application Security Curriculum Product Manager at SANS. In this series of posts Eric will take a look at laying a foundation for Developer Security Awareness Training. In our last post, we discussed improving the security … Continue reading What Should Developer Security Awareness Training Look Like?


A Foundation for Developer Security Awareness Training: What's the Problem?

Guest Editor: Today's post is from Eric Johnson. Eric is a Senior Security Consultant at Cypress Data Defense and the Application Security Curriculum Product Manager at SANS. In this series of posts Eric will take a look at laying a foundation for Developer Security Awareness Training. In our last post , we discussed what we … Continue reading A Foundation for Developer Security Awareness Training: What's the Problem?


The Need for Softer Skills

One of the biggest take-aways (and surprises) for me from the 2015 Security Awareness Report is the lack of soft skills in our field. Over 75% of those leading or supporting a security awareness program had very technical backgrounds, to include IT admins, security analysts and even webmasters (page 8). In addition, we found most … Continue reading The Need for Softer Skills