Security Awareness Blog

New Security Awareness Training for ICS/SCADA Community

At SANS Securing The Human we are very excited to announce the release of new security awareness training designed just for the ICS/SCADA community. Our Subject Matter Expert Tim Conway goes into more detail on the training below. You can learn more about the training (or take a demo) at our ICS Engineering website, or … Continue reading New Security Awareness Training for ICS/SCADA Community


Top Five Most Popular Security Awareness Topics

At SANS Securing The Human we currently have over 40 topics in our security awareness training library. By breaking up our training into short modules organizations can select and use only the topics that directly apply to them. This enables organizations to create short, yet highly effective training. You can find descriptions and short video … Continue reading Top Five Most Popular Security Awareness Topics


The Chaos Called RSA

Like many of you, I am preparing for the chaos called RSA as over 20,000 security geeks descend upon San Francisco. What I love about the RSA conference is the amazing opportunity to meet up with long lost friends and make new ones. The challenge is staying sane while doing it amidst the crowds and … Continue reading The Chaos Called RSA


Verizon PCI Report - Nearly 70% of Data Breaches Started With the Human

Verizon recently released their 2014 PCI Compliance Report. As stated in the introduction: "This research is based on quantitative data gathered by our qualified security assessors (QSAs) while performing baseline assessments on PCI DSS 2.0 compliance between 2011 and 2013. The companies that we assessed span many industries and countries." One of the biggest findings? … Continue reading Verizon PCI Report - Nearly 70% of Data Breaches Started With the Human


Guest Post - Survey on Application Security Programs, Webcast and Paper

Editor's Note:This guest blog post is from Frank Kim, head of the Developer curriculum at the SANS Institute. For the second year in a row Jim Bird and I have helped SANS put together a "Survey on Application Security Programs and Practices". We asked some of the same questions as the previous year, just in … Continue reading Guest Post - Survey on Application Security Programs, Webcast and Paper