Security Awareness Blog

Free Security Awareness Lunch-n-Learn

Interested in learning more about the HumanOS? Want to know what makes people so vulnerable, how these vulnerabilities are being actively exploited, and what you can do to patch the HumanOS? Join me for a free lunch-n-learn in downtown Chicago Tuesday, 27 September. We will be hosting the event at the JW Marriott, in the … Continue reading Free Security Awareness Lunch-n-Learn


New Security Awareness Resource - Common Security Terms in Simple English

A common challenge in any security awareness program is communicating to the OCU (Ordinary Computer User). Often terms you and I in the security community are familiar with may seem overwhelming or confusing to others, especially when these definitions change over time. To help you and the community we have put together a "Top Security … Continue reading New Security Awareness Resource - Common Security Terms in Simple English


Policies For Your Awareness Program

In our last post we discussed the different strategic issues you need to consider before deploying your awareness program, including setting up your Steering Committee and determining your goals. One of the next points is your security awareness policy. Specifically, does your security policy have anything about security awareness and education? If so, what does … Continue reading Policies For Your Awareness Program


Strategic Issues For Deploying Your Security Awareness Program

Last month we discussed the first step in planning your awareness program, building your security awareness Steering Committe (SC). This will be the foundation for your program and help ensure long term success. This is where every new program should start. However one of the common questions I'm asked is what next, what do you … Continue reading Strategic Issues For Deploying Your Security Awareness Program


NIST / NICE Security Awareness and Education Strategy

As some of you may already know, NIST (the US National Institute of Standards and Technology) recently published a draft version on its strategy for promoting cyber security awareness and education. This is a draft version and can be a bit hard to read, but it has three core goals. From page 2 of the … Continue reading NIST / NICE Security Awareness and Education Strategy