We just released the June issue of OUCH!, SANS' free security awareness newsletter. This monthly newsletter has a dedicated editorial board, SANS Instructors as Subject Matter Experts and a community review board, so we like to think the content is rock solid. In addition, we now translate OUCH! into ten languages, with new languages being … Continue reading June Release of the OUCH! Security Awareness Newsletter
Justifying your awareness program can be a challenge, a challenge where you may need multiple methods to demonstrate your program's value. Earlier this week we discussed comparing the resources your organization invests in protecting a standard operating system to the resources it invests in securing the Human operating system (i.e. your employees). Here is a … Continue reading Business Justification #2 For Security Awareness
One of the biggest challenges we face in security awareness is justifying our awareness program. Awareness costs money and organizations want to see a return on their investment. Now it is no surprise this is a challenge, demonstrating ROI in any security discipline can be challenging. However it is especially true with human security as … Continue reading Business Justification For Security Awareness
I'm not religious when it comes to software, I simply like to use what works. I've gone through different stages, including using Windows, Solaris, Linux, OpenBSD (even OpenBSD on Sparc). Now I use a Mac, I love how it always just works and it is a power house when it comes to video editing. However … Continue reading Security Awareness For The Mac ...?
Lots of excitement in the news in the past weeks. Organizations such as RSA, Epsilon, and Oak Ridge National Laboratory were all compromised via spear phishing attacks. Just recently Sony's 77 million registered users of Playstation Network were compromised, potentially including their passwords. If that is the case, and if Sony's subscribers are using the … Continue reading Spear Phishing, Stolen Passwords = The Human