Reinventing Security Awareness Training

Data Breach Today

Want to improve how your organization delivers and absorbs security awareness training? Then it comes down to reinventing your approach, including gamification, says Barracuda's Michael Flouton

SANS Launches Security Awareness Certification

Dark Reading

The SANS Security Awareness Professional (SSAP) will be available this summer to professionals focused on measuring and mitigating human risk

8 Tips for Building a Security-Aware Culture

MediaPro

My colleagues at MediaPRO and I have historically had loads to say about the importance of security awareness, and there’s always more to say on that subject. Building a culture of security at an organization, the thinking goes, is the best way to change risky behavior.

'Culture Eats Policy for Breakfast': Rethinking Security Awareness Training

Dark Reading

What's definitely not working with end-user cybersecurity awareness training - and what you can do about it

Webinar: Learn the Ins and Outs of a Security-Aware Culture from a Forrester Expert

MediaPro

Developing and maintaining a security-aware culture in an organization has become vital in the defense against modern cyberthreats. Learn how to instill a culture of security through an engaging, meaningful, and even entertaining security awareness program.

On-Demand Webinar: Learn the Ins and Outs of a Security-Aware Culture from a Forrester Expert

MediaPro

Developing and maintaining a security-aware culture in an organization has become vital in the defense against modern cyberthreats. Our two experts discuss: Addressing cultural challenges to investment in security awareness.

Employees’ lack of security awareness is “inexplicable and inexcusable”

IT Governance

Organisations’ second biggest concern is their employees’ lack of security awareness, according to CyberEdge’s 2018 Cyberthreat Defense Report. It adds: “Suffering from a shortage of high-quality security talent is completely understandable.

Designing Employee Security Awareness Training That Works

eSecurity Planet

The secret to effective employee security awareness training boils down to three things: Train early, often, and explain why

It’s Time to Combine Security Awareness and Privacy Awareness

MediaPro

He’s got info security folks requiring him to take annual training, posting educational videos, and sending simulated phishing email all the time. But when it gets right down to it, Bob doesn’t understand quite where security ends and privacy begins.

Bridging the Gap Between Security Awareness and Action – A FREE Infographic from AIIM

IG Guru

The post Bridging the Gap Between Security Awareness and Action – A FREE Infographic from AIIM appeared first on IG GURU. IG News Information Governance information security Security AIIM Infographic Security Awareness[link].

Bridging the Gap Between Security Awareness and Action

AIIM

Information security is at the list of concerns (80% are “concerned” or “extremely concerned”). My new eBook, Bridging the Gap Between Security Awareness and Action , explores these five key issues: How to shift the “governance” conversation to higher ground.

Is your staff’s cyber security awareness up to scratch?

IT Governance

The failure of staff to follow workplace security regulations, as well as criminal hackers finding more ways to exploit members of staff, is becoming an increasing problem. Staff can easily undermine your organisation’s cyber security.

7 Tips for an Effective Employee Security Awareness Program

Dark Reading

Breaches and compliance requirements have heightened the need for continuous and effective employee training, security experts say

Protected: Hak5 tool workshops — Achieving Security Awareness Through Social Engineering Attacks BlackHat USA 2019

Architect Security

Hak5 Social Engineering blackhat nano pineapple Security AwarenessThere is no excerpt because this is a protected post.

The Fundamental Flaw in Security Awareness Programs

Dark Reading

It's a ridiculous business decision to rely on the discretion of a minimally trained user to thwart a highly skilled sociopath, financially motivated criminal, or nation-state

Why cyber survey shows it’s time to improve security awareness

Information Management Resources

Unfortunately, lack of awareness of important security practices is a primary issue plaguing security efforts in healthcare. Cyber security

6 Reasons Security Awareness Programs Go Wrong

Dark Reading

While plenty of progress has been made on the training front, there's still some work ahead in getting the word out and doing so effectively

Upcoming webinar: Creating an effective cyber security awareness programme

IT Governance

As hard as it is to believe, an organisation’s biggest security risk is often its own. 75% of large organisations suffered staff-related security breaches in , with 50% of the worst breaches caused by human error, according to a report published by Axelos.

55% of Companies Don't Offer Mandatory Security Awareness Training

Dark Reading

Even those that provide employee training do so sparingly, a new study finds

Proving the Value of Security Awareness with Metrics that 'Deserve More'

Dark Reading

Without metrics that matter to the business, awareness programs will continue to be the bastard child of security

How to Gauge the Effectiveness of Security Awareness Programs

Dark Reading

If you spend $10,000 on an awareness program and expect it to completely stop tens of millions of dollars in losses, you are a fool. If $10,000 prevents $100,000 in loss, that's a 10-fold ROI

Optimizing the Security Awareness of Your End-Users

Dark Reading

End-users can be the weakest link in your infosec defense. But according to KnowBe4 founder and CEO Stu Sjouwerman, there is something you can do about that - if you implement the right behavioral diagnostics and focus your training needs on individual users' actual weaknesses

The Importance of Security Awareness Training and the Impact of Attack Demonstrations

Architect Security

In “The Importance of Security Awareness Training“, SANS says: “One of the best ways to make sure company employees will not make costly errors in regard to information security is to institute company-wide security-awareness training initiatives that include, but are not limited to classroom style training sessions, security awareness website(s), helpful hints via e-mail, or […].

7 views: Why National Cyber Security Awareness Month is more important than ever

Information Management Resources

Growing cyber threats remind organizations of the need to be proactive, know their data and security vulnerabilities, encourage awareness practices and seek outside help when necessary. Data security Cyber security Cyber attacks Malware Fraud prevention Encryption Personally identifiable information

Video: Don’t be a Security Zombie!

MediaPro

We often ask information security and privacy professionals what keeps them up at night. Nine out of 10 say it’s fear of Security Zombies. The post Video: Don’t be a Security Zombie!

Video 70

75% of organisations have been hit by spear phishing

IT Governance

It also found that only 40% of organisations have full visibility into email threats, meaning those organisations are being targeted regularly and simply aren’t aware of the scale of the threat. You may also benefit from a thorough re-evaluation of your approach to cyber security.

75% of organisations have been hit by spear phishing

IT Governance

Fortunately, two recent reports have indicated that most organisations are well aware of the threat of phishing. These and other factors make email fraud, also known as business email compromise (BEC), extremely difficult to detect and stop with traditional security tools.

5 Signs You Just Got a Phishing Email

MediaPro

That’s why a healthy dose of security awareness, with some skepticism and situational awareness thrown in, can go a long way. Blog Foundational Phishing Resources Security Awareness Thought Leadership cybersecurity cybersecurity awareness phishing security awareness

Independent Study Finds a Three-Year 139% Return on Investment with MediaPRO Awareness Training

MediaPro

MediaPRO today announced the results of a commissioned Total Economic Impact TM study that revealed as much as $256,400 in total benefits for an organization implementing MediaPRO’s security and privacy awareness training platform.

FBI Report: 900 Complaints of Cybercrime Per Day in 2018

MediaPro

Awareness is one powerful tool in efforts to combat and prevent these crimes.” ” We’re glad Gregory mentioned awareness, though we might be thinking of it a little differently then she is. Real-world statistics like this are perfect fodder for making the case for both an awareness training program overall and for helping employees understand that this stuff matters.

Majority of organizations still report a lack of cyber security budget

DXC Technology

Despite years of widespread data breaches and increased regulatory demands, 75 percent of respondents to a recent survey do not believe that they have an adequate information security budget. Additionally, attackers continue to successfully use compromised credentials in attacks, and while 93 percent of organizations surveyed are aware of the vulnerability and attack technique — […]. Security cybersecurity security awareness

Focus on Phishing: Diving Deep into A Persistent Threat

MediaPro

Our recently released 2018 State of Privacy and Security Awareness Report found that 75% of U.S. employees lack at least some awareness toward threats to cybersecurity and data privacy. This lack of phishing awareness is troubling for two reasons.

Staff and IT leadership at odds over data security

DXC Technology

It’s no secret that employees and contractors are one of the primary causes of enterprise security events. Security insider threat security awarenessIt’s not that most insiders who cause data breaches are malicious. They’re not. They may carelessly send a cleartext email that contains sensitive information, reuse the same password across applications, or lose an unencrypted notebook or portable storage […].

5 Ways to Get Cybersecure During Your Holiday Downtime

MediaPro

Using a password manager is probably the single most important thing you can do to keep yourself secure. As most security experts will tell you, these methods are a great way to add another layer of security to your important accounts.

Ransomware: Keep the Bitcoin in Your Wallet

MediaPro

Be sure to train your employees to be aware of phishing and common tactics with a comprehensive security awareness initiative. Blog Executive Foundational Security Awareness Thought Leadership cybersecurity malware ransomware security awareness

NCSAM 2018 Week 3: Keep Security Top-of-Mind

MediaPro

The fact remains, though, that fostering a risk-aware corporate culture through security awareness has never been more important. One thing connects these threats: the role that employees play in keeping their organizations secure. Passwords & Securing Your Accounts.

Tips 56

Your biggest cyber security threat is inside your organisation

IT Governance

Organisations usually spend most of their security budget on technologies intended to keep cyber criminals out of their systems, but this overlooks their biggest vulnerability: human error. Cyber security personnel often struggle to demonstrate why staff awareness training is necessary.

MediaPRO Releases New Training Solution Addressing Larger Security and Privacy Threat Landscape

MediaPro

Employees continue to be one of the greatest risks because today’s security and privacy awareness programs provide mixed results, at best. Our TrainingPacks answer the question we hear most often: how can you make it simpler for me to run a real awareness program?”

MediaPRO Named a Leader in 2018 Gartner Magic Quadrant 5 Years Running

MediaPro

MediaPRO has been recognized as a Leader in the 2018 Gartner Magic Quadrant for Security Awareness Computer-Based Training 1 , marking the fifth consecutive year the company has been given this designation.

Employees open companies to security risks by working remotely

IT Governance

Those who do so need to understand the importance of using a secure connection to make sure they are not compromising business security and confidentiality. 28% said that they had never received any cyber security training.

Risk 80