Reinventing Security Awareness Training

Data Breach Today

Want to improve how your organization delivers and absorbs security awareness training? Then it comes down to reinventing your approach, including gamification, says Barracuda's Michael Flouton

SANS Launches Security Awareness Certification

Dark Reading

The SANS Security Awareness Professional (SSAP) will be available this summer to professionals focused on measuring and mitigating human risk

Webinar: Learn the Ins and Outs of a Security-Aware Culture from a Forrester Expert


Developing and maintaining a security-aware culture in an organization has become vital in the defense against modern cyberthreats. Learn how to instill a culture of security through an engaging, meaningful, and even entertaining security awareness program.

4 Ways Security Awareness Managers Can Use the 2019 DBIR


Here’s another, this one offering four pieces of advice for security awareness training managers based on the findings of the DBIR. This means security awareness managers cannot exempt executives from training. The lesson for security awareness managers?

It’s Time to Combine Security Awareness and Privacy Awareness


He’s got info security folks requiring him to take annual training, posting educational videos, and sending simulated phishing email all the time. But when it gets right down to it, Bob doesn’t understand quite where security ends and privacy begins.

Designing Employee Security Awareness Training That Works

eSecurity Planet

The secret to effective employee security awareness training boils down to three things: Train early, often, and explain why

Bridging the Gap Between Security Awareness and Action – A FREE Infographic from AIIM

IG Guru

The post Bridging the Gap Between Security Awareness and Action – A FREE Infographic from AIIM appeared first on IG GURU. IG News Information Governance information security Security AIIM Infographic Security Awareness[link].

7 Tips for an Effective Employee Security Awareness Program

Dark Reading

Breaches and compliance requirements have heightened the need for continuous and effective employee training, security experts say

Is your staff’s cyber security awareness up to scratch?

IT Governance

The failure of staff to follow workplace security regulations, as well as criminal hackers finding more ways to exploit members of staff, is becoming an increasing problem. Staff can easily undermine your organisation’s cyber security.

The Fundamental Flaw in Security Awareness Programs

Dark Reading

It's a ridiculous business decision to rely on the discretion of a minimally trained user to thwart a highly skilled sociopath, financially motivated criminal, or nation-state

Upcoming webinar: Creating an effective cyber security awareness programme

IT Governance

As hard as it is to believe, an organisation’s biggest security risk is often its own. 75% of large organisations suffered staff-related security breaches in , with 50% of the worst breaches caused by human error, according to a report published by Axelos.

6 Reasons Security Awareness Programs Go Wrong

Dark Reading

While plenty of progress has been made on the training front, there's still some work ahead in getting the word out and doing so effectively

Bridging the Gap Between Security Awareness and Action


Information security is at the list of concerns (80% are “concerned” or “extremely concerned”). My new eBook, Bridging the Gap Between Security Awareness and Action , explores these five key issues: How to shift the “governance” conversation to higher ground.

55% of Companies Don't Offer Mandatory Security Awareness Training

Dark Reading

Even those that provide employee training do so sparingly, a new study finds

Proving the Value of Security Awareness with Metrics that 'Deserve More'

Dark Reading

Without metrics that matter to the business, awareness programs will continue to be the bastard child of security

7 views: Why National Cyber Security Awareness Month is more important than ever

Information Management Resources

Growing cyber threats remind organizations of the need to be proactive, know their data and security vulnerabilities, encourage awareness practices and seek outside help when necessary. Data security Cyber security Cyber attacks Malware Fraud prevention Encryption Personally identifiable information

How to Gauge the Effectiveness of Security Awareness Programs

Dark Reading

If you spend $10,000 on an awareness program and expect it to completely stop tens of millions of dollars in losses, you are a fool. If $10,000 prevents $100,000 in loss, that's a 10-fold ROI

Optimizing the Security Awareness of Your End-Users

Dark Reading

End-users can be the weakest link in your infosec defense. But according to KnowBe4 founder and CEO Stu Sjouwerman, there is something you can do about that - if you implement the right behavioral diagnostics and focus your training needs on individual users' actual weaknesses

The Importance of Security Awareness Training and the Impact of Attack Demonstrations

Architect Security

In “The Importance of Security Awareness Training“, SANS says: “One of the best ways to make sure company employees will not make costly errors in regard to information security is to institute company-wide security-awareness training initiatives that include, but are not limited to classroom style training sessions, security awareness website(s), helpful hints via e-mail, or […].

75% of organisations have been hit by spear phishing

IT Governance

It also found that only 40% of organisations have full visibility into email threats, meaning those organisations are being targeted regularly and simply aren’t aware of the scale of the threat. You may also benefit from a thorough re-evaluation of your approach to cyber security.

Video: Don’t be a Security Zombie!


We often ask information security and privacy professionals what keeps them up at night. Nine out of 10 say it’s fear of Security Zombies. The post Video: Don’t be a Security Zombie!

Video 70

5 Signs You Just Got a Phishing Email


That’s why a healthy dose of security awareness, with some skepticism and situational awareness thrown in, can go a long way. Blog Foundational Phishing Resources Security Awareness Thought Leadership cybersecurity cybersecurity awareness phishing security awareness

75% of organisations have been hit by spear phishing

IT Governance

Fortunately, two recent reports have indicated that most organisations are well aware of the threat of phishing. These and other factors make email fraud, also known as business email compromise (BEC), extremely difficult to detect and stop with traditional security tools.

FBI Report: 900 Complaints of Cybercrime Per Day in 2018


Awareness is one powerful tool in efforts to combat and prevent these crimes.” ” We’re glad Gregory mentioned awareness, though we might be thinking of it a little differently then she is. Real-world statistics like this are perfect fodder for making the case for both an awareness training program overall and for helping employees understand that this stuff matters.

Majority of organizations still report a lack of cyber security budget

DXC Technology

Despite years of widespread data breaches and increased regulatory demands, 75 percent of respondents to a recent survey do not believe that they have an adequate information security budget. Additionally, attackers continue to successfully use compromised credentials in attacks, and while 93 percent of organizations surveyed are aware of the vulnerability and attack technique — […]. Security cybersecurity security awareness

Focus on Phishing: Diving Deep into A Persistent Threat


Our recently released 2018 State of Privacy and Security Awareness Report found that 75% of U.S. employees lack at least some awareness toward threats to cybersecurity and data privacy. This lack of phishing awareness is troubling for two reasons.

Ransomware: Keep the Bitcoin in Your Wallet


Be sure to train your employees to be aware of phishing and common tactics with a comprehensive security awareness initiative. Blog Executive Foundational Security Awareness Thought Leadership cybersecurity malware ransomware security awareness

5 Ways to Get Cybersecure During Your Holiday Downtime


Using a password manager is probably the single most important thing you can do to keep yourself secure. As most security experts will tell you, these methods are a great way to add another layer of security to your important accounts.

NCSAM 2018 Week 3: Keep Security Top-of-Mind


The fact remains, though, that fostering a risk-aware corporate culture through security awareness has never been more important. One thing connects these threats: the role that employees play in keeping their organizations secure. Passwords & Securing Your Accounts.

Tips 56

MediaPRO Releases New Training Solution Addressing Larger Security and Privacy Threat Landscape


Employees continue to be one of the greatest risks because today’s security and privacy awareness programs provide mixed results, at best. Our TrainingPacks answer the question we hear most often: how can you make it simpler for me to run a real awareness program?”

Your biggest cyber security threat is inside your organisation

IT Governance

Organisations usually spend most of their security budget on technologies intended to keep cyber criminals out of their systems, but this overlooks their biggest vulnerability: human error. Cyber security personnel often struggle to demonstrate why staff awareness training is necessary.

MediaPRO Named a Leader in 2018 Gartner Magic Quadrant 5 Years Running


MediaPRO has been recognized as a Leader in the 2018 Gartner Magic Quadrant for Security Awareness Computer-Based Training 1 , marking the fifth consecutive year the company has been given this designation.

Employees open companies to security risks by working remotely

IT Governance

Those who do so need to understand the importance of using a secure connection to make sure they are not compromising business security and confidentiality. 28% said that they had never received any cyber security training.

Risk 79

Empower Employees While Preventing Insider Data Breaches

Data Breach Today

Monitoring Your Company’s Simulated Phishing Program Just Got Easier


About MediaPRO Blog Foundational MediaPRO News Program Management Security Awareness MediaPro News phishing simulator phishing tool phishing training

47% of Britons aren’t happy with the rise of technology

IT Governance

Of those, 45% cite cyber security threats as their top reason. Norris’ comments reflect what many cyber security experts have been saying for a long time – particularly his remarks about the inevitability of cyber crime. Cyber Security Staff Awareness security awareness programme

3 Reasons You Need Incident Reporting Training


We need to make sure they’re equipped with the tools and knowledge to do the right thing by reporting potential threats and risks to data security, as they happen, not in the potential aftermath of an investigation.

How can your organisation become more cyber secure?

IT Governance

Cyber attacks are increasing year after year as criminal hackers’ knowledge evolves, but many organisations’ cyber security is not evolving with it. In order to protect your organisation, it is vital to become more cyber secure.

6 Security Training Hacks to Increase Cyber IQ Org-Wide

Dark Reading

Move beyond generic, annual security awareness training with these important tips

Tips 79

NCSAM 2018 Week 1: Cybersecurity Starts at Home


But until it is, it’s up to individuals and families to prioritize cybersecurity awareness at home. Securing the Home Front. Coordinated and led by the National Cyber Security Alliance and the U.S.