Security Awareness Blog

Security Awareness Metrics Checklist

For a high-impact security awareness program to be effective, you need the ability to measure your awareness program. Security awareness metrics are something I have written about in the past. To help centralize your security awareness metrics planning I have created a metrics checklist. This matrix breaks down awareness metrics into two categories, those … Continue reading Security Awareness Metrics Checklist


How to Effectively Reward Secure Behaviors

One of the challenges with creating a high-impact security awareness program is how do you reward good behavior? Obviously enforcement is important to any awareness program, but at some point we need to combine that with positive reinforcement. However this is not as simple as it seems, it turns out rewarding good behavior can have … Continue reading How to Effectively Reward Secure Behaviors


Free Planning/Deployment Kit for your Security Awareness Program

Creating a security awareness program for compliance is simple. Creating an active, long term and engaging security awareness program that has an impact is hard. To help you and your organization with your security awareness program I updated the SANS Securing The Human Deployment kit. This is package has been completely updated with over 15 … Continue reading Free Planning/Deployment Kit for your Security Awareness Program


You Know Your Security Awareness Program is Having An Impact When ...

Creating a security awareness program so you are compliant is easy. Creating a security awareness program that changes behaviors and has an impact is hard. One of the challenges is how do you know when you are having an impact? Here are some metrics I've noticed - you know you are having an impact when … Continue reading You Know Your Security Awareness Program is Having An Impact When ...


Gamifying Security Awareness

One of the challenges we have with security awareness is when you come down to it, awareness training and education can become boring over time. Yes there are steps you can take to make it exciting, and there are many things you can do to sexy training up, but how often do you have employees … Continue reading Gamifying Security Awareness