Justifying your awareness program can be a challenge, a challenge where you may need multiple methods to demonstrate your program's value. Earlier this week we discussed comparing the resources your organization invests in protecting a standard operating system to the resources it invests in securing the Human operating system (i.e. your employees). Here is a … Continue reading Business Justification #2 For Security Awareness
One of the biggest challenges we face in security awareness is justifying our awareness program. Awareness costs money and organizations want to see a return on their investment. Now it is no surprise this is a challenge, demonstrating ROI in any security discipline can be challenging. However it is especially true with human security as … Continue reading Business Justification For Security Awareness
I'm not religious when it comes to software, I simply like to use what works. I've gone through different stages, including using Windows, Solaris, Linux, OpenBSD (even OpenBSD on Sparc). Now I use a Mac, I love how it always just works and it is a power house when it comes to video editing. However … Continue reading Security Awareness For The Mac ...?
Lots of excitement in the news in the past weeks. Organizations such as RSA, Epsilon, and Oak Ridge National Laboratory were all compromised via spear phishing attacks. Just recently Sony's 77 million registered users of Playstation Network were compromised, potentially including their passwords. If that is the case, and if Sony's subscribers are using the … Continue reading Spear Phishing, Stolen Passwords = The Human
One of my passions is extending security awareness beyond just the work environment and making sure that parents are also armed with the skills and knowledge they need to protect their children online. SANS has done tremendous work in supporting this area, including a new series of SANS @Night talks called Securing The Kids. This … Continue reading Security Awareness For Parents - Handout