Gaining Support for Security Awareness Programs

Gaining Support for Security Awareness Programs

A common challenge many organizations face is getting management approval and/or funding for their awareness program. This section contains resources to help justify and get support for your own awareness program. These resources are developed for the community and unless otherwise stated are distributed under the Creative Commons BY-NC-SA 4.0 license. Please send any questions or any feedback on how to improve these resources to

2017 Security Awareness Report

The most comprehensive and actionable report on the state of security awareness based on input from over 1000 professionals. Now in its third year, the 2017 SANS Security Awareness report enables security awareness professionals to make data driven decision to improve their programs. The report includes detailed recommendations and action plans to address the key findings uncovered in the analysis and is based on over 1000 participant surveys from the awareness community.

Stakeholder Presentation

This presentation template can be used to present to your senior management to explain the value of your proposed security awareness program; giving you the support, budget and resources you need to make your awareness program happen.

Data Breaches

Your organization may be required to protect certain types of data (card holder, PHI, PII, PNI, etc). Here are several sites where you can search records of publicly known data breaches.

Compliance Requirements

There are a variety of regulations and standards that require security awareness training. Download our Security Awareness Compliance Requirements document that lists the most common legislation or standards that require security awareness training. In addition you will find the specific sections that state the requirement and links for more information.