Security Awareness Blog

Reinforcement Training - The Halo Effect

Last week I was fortunate to attend the Learning 3.0 Conference which focused on eLearning. I was really impressed by a talk by Dr. Art Kohn on Cognitive Behavior. One of the things he helped me understand is how to best leverage reinforcement training, or what he called booster training. The idea is once a … Continue reading Reinforcement Training - The Halo Effect


Shark Attack!!! - Why is This Frontpage News?

One of the things I've covered in the past is how bad we as people are at judging risk, we overestimate risk for events that are very visual and when we are not in control. This is why so many people fear flying, when in reality that is the safest way to get from point … Continue reading Shark Attack!!! - Why is This Frontpage News?


The Forgetting Curve - The Importance of Reinforcement

I recently attended the Learning 3.0 Conference in Chicago, IL. As someone whose career has been primarily about security and mitigating risk, I realized we have a lot to learn from others about cognitive behavior and the science of learning. I attended several excellent talks at the event which I'll be sharing over the week. … Continue reading The Forgetting Curve - The Importance of Reinforcement


Awareness Programs for High Turnover

Recently @erickolb asked me a great question, how do you train and engage a workforce that has a high-turn over rate? This is a common challenge, especially for industries such as retail where high-turn over or seasonal hires can greatly complicate your program. These are some initial recommendations I would make. Start With Your Core: … Continue reading Awareness Programs for High Turnover


The Tao of Security Awareness - Detection

Richard Bejtlich, CSO of Mandiant and a security professional I have admired for years, recently posted his thoughts on the value of security awareness. He and I agree on many points. The goal of awareness is to reduce risk, specifically human risk, and if done right it can be effective at it. Security awareness metrics … Continue reading The Tao of Security Awareness - Detection