Reinventing Security Awareness Training

Data Breach Today

Want to improve how your organization delivers and absorbs security awareness training? Then it comes down to reinventing your approach, including gamification, says Barracuda's Michael Flouton

3 reasons cyber security training is essential

IT Governance

Organisations are always looking for ways to improve their cyber security defences, but they often overlook the value of enrolling their employees on cyber security training courses. If you want to keep your organisation secure, you need your employees to know what they’re doing.

3 reasons cyber security training is essential

IT Governance

Organisations are always looking for ways to improve their cyber security defences, but they often overlook the value of enrolling their employees on cyber security training courses. If you want to keep your organisation secure, you need your employees to know what they’re doing.

Training At Embedded Systems Security Days

Adam Shostack

I’m excited to be teaming up with Alpha Strike and Limes Security to deliver training in Vienna November 6-8. Details are available at Embedded Systems Security Days. Security Software Engineering threat modeling

'Culture Eats Policy for Breakfast': Rethinking Security Awareness Training

Dark Reading

What's definitely not working with end-user cybersecurity awareness training - and what you can do about it

Training to Improve Support of Product Security

Data Breach Today

The Forum of Incident Response and Security Teams recently announced the release of new training resources to help organizations build and improve product security incident response teams. Damir "Gaus" Rajnovic of FIRST discusses the global need for these resources

Malware Training Sets: FollowUP

Security Affairs

Since that day I received hundreds of emails from students, researchers and practitioners all around the world asking me questions about how to follow up that research and how to contribute to expanding the training set. I am a computer security scientist with an intensive hacking background.

8 key elements of an effective staff awareness training programme

IT Governance

These kinds of incidents thrive because organisations don’t place enough emphasis on security awareness programmes , which reduce the risk of human error and malicious insiders. Here are eight things you should do to get the most out of your security awareness programme.

Regular User Training Most Effective Security Antidote

Dark Reading

Regular training sessions coupled with creation of a "human firewall" remain the most effective protections against social engineering and phishing, he adds Social engineering remains the top vulnerability organizations face because humans remain the easiest way to access networks or databases, says Stu Sjouwerman, Founder and CEO of KnowBe4.

How Behavioral Data Shaped a Security Training Makeover

Dark Reading

A new program leveraged behavioral data of employees to determine when they excelled at security and where they needed improvement

Scaling Threat Modeling Training

Adam Shostack

For the last few years, I’ve been delivering in-person threat modeling training. I’ve trained groups ranging from 2 to 100 people at a time, and I’ve done classes as short as a few hours and as long as a week.

ISO 27001 training in Birmingham

IT Governance

Achieving certification to ISO 27001 demonstrates to existing and potential customers that your organisation has defined and put in place best-practice information security processes. ISO27001 Certified ISMS Foundation Training Course.

Information security and compliance training for the healthcare sector

IT Governance

To address the rising threat of data breaches across all sectors, new compliance requirements which aim to harmonise and improve data security practices. and healthcare must address the new DSP (Data Security and Protection) Toolkit. ISO 27001 training.

What Should Training Cover?

Adam Shostack

” That’s when we take a hard security problem and sagely say “better threat modeling.” So to loop this around to threat modeling, we can consider a bunch of skills or knowledge that could be delivered via training: Enumerate attacker capabilities.

Designing Employee Security Awareness Training That Works

eSecurity Planet

The secret to effective employee security awareness training boils down to three things: Train early, often, and explain why

Despite growing risks, most organizations short-change security training, basics

Information Management Resources

Data security Cyber security Cyber attacksWhile it’s perfectly understandable that every business has to operate on a specific budget, it’s very odd that, when the money gets tight, IT almost exclusively gets the short end of the stick.

NEW TECH: Circadence deploys ‘gamification’ training to shrink cybersecurity skills gap

The Last Watchdog

It’s clear that closing the cybersecurity skills gap has to happen in order to make our internet-centric world as private and secure as it ought to be. Related: The need for diversity in cybersecurity personnel One of the top innovators in the training space is Circadence ®. I had the chance at RSA 2019 to visit again with Circadence security evangelist Keenan Skelly. The way people are trained in cybersecurity right now is the opposite of gamification.

E-learning: the effective way to train your team

IT Governance

Despite the operational challenge of staff turnover, there is still a need to ensure that teams are trained to perform not only their core duties but also to do so safely. Trained staff might not remain loyal to your business, so it can seem unpalatable to invest heavily in training.

3 Reasons to Train Security Pros to Code

Dark Reading

United Health chief security strategist explains the benefits the organization reaped when it made basic coding training a requirement for security staff

6 Security Training Hacks to Increase Cyber IQ Org-Wide

Dark Reading

Move beyond generic, annual security awareness training with these important tips

Tips 83

CISMP training courses now available in Glasgow

IT Governance

Certificate in Information Security Management Principles (CISMP) is a foundation-level qualification that demonstrates good knowledge of information security management. High demand means we are now offering our CISMP training course in different locations, including Glasgow.

How to implement a GDPR staff awareness training programme

IT Governance

one of the biggest cyber security threats is inside your organisation , there’s never been a better time to ensure your organisation has an effective GDPR staff awareness training programme in place. . How to deliver staff awareness training – seven top tips .

How to implement a GDPR staff awareness training programme

IT Governance

one of the biggest cyber security threats is inside your organisation , there’s never been a better time to ensure your organisation has an effective GDPR staff awareness training programme in place. . How to deliver staff awareness training – seven top tips .

Constant tech advances driving high demand for IT training

Information Management Resources

Networking, operating systems, security and programming training are in the highest demand among technology and developer professionals

3 Reasons You Need Incident Reporting Training

MediaPro

We need to make sure they’re equipped with the tools and knowledge to do the right thing by reporting potential threats and risks to data security, as they happen, not in the potential aftermath of an investigation. 3 Reasons for Incident Response Training.

Ransomware Trains Its Sights on Cloud Providers

Dark Reading

Ransomware writers are now targeting cloud service providers with network file encryption attacks as a way to hold hostage the maximum number of customers that they can, notes Chris Morales, head of security analytics for Vectra. He also discusses Vectra's new ransomware report, which offers tips for protecting against virtual hostage taking

55% of Companies Don't Offer Mandatory Security Awareness Training

Dark Reading

Even those that provide employee training do so sparingly, a new study finds

Master NSA-Grade Security Tools at New Black Hat Trainings Virginia

Dark Reading

Get ready, because this October Black Hat will bring its highly-regarded Trainings to Alexandria, Virginia for two days of intensive, practical cybersecurity education

Sharpen Your Security Skills at Black Hat Trainings Chicago!

Dark Reading

Black Hat is bringing its highly-regarded Trainings to Chicago next month, October 22 and 23.Don't miss this opportunity to develop your skills in some of the most technical, hands-on security courses available

Security Training That Keeps Up with Modern Development

Dark Reading

Black Hat USA speakers to discuss what it will take to 'shift knowledge left' to build up a corps of security-savvy software engineers

Law firms report increase in staff-related security incidents

IT Governance

Staff can jeopardise a firm’s security with a single moment of carelessness. 2018 saw a significant rise in the number of law firms reporting security incidents concerning their own staff, up from 33% in 2017 to 46% in 2018 according to research by PwC. These incidents included the loss or leakage of confidential information, highlighting the need for better information security management within the legal sector. Get your firm on track with staff awareness training.

Are your staff GDPR trained? Find out what you need to do

IT Governance

Staff awareness training is a core component of GDPR compliance, yet many organisations haven’t implemented the necessary measures. For all the attention that organisations pay to information security, the biggest threat continues to come from employees. Staff training under the GDPR.

Are your staff GDPR trained? Find out what you need to do

IT Governance

Staff awareness training is a core component of GDPR compliance, yet many organisations haven’t implemented the necessary measures. For all the attention that organisations pay to information security, the biggest threat continues to come from employees. Staff training under the GDPR.

Why you should train your staff to think securely

IT Governance

Far too often, information security teams have only the broadest overview of the wider workings of their organisations. Staff need regular training on information security practices to ensure they’re aware of the risks they face on a daily basis.

Regular User Awareness Training Still the Best Security Tactic

Dark Reading

Regular, monthly trainings help reduce phishing click rates Email continues to be the largest area of exposure for most organizations, and phishing emails lead the charge, according to Stu Sjouwerman, founder and CEO of KnowBe4. And while AI and machine learning can make a difference, these same tools are used by the bad guys, Sjouwerman adds.

ISO 27001 staff awareness training – meeting the requirements

IT Governance

ISO 27001 is the international standard that describes best practices for an information security management system (ISMS). It recognises that, although technological defences are essential, they will have limited use if staff don’t understand their information security responsibilities.

Train your team to ensure you achieve ISO 27001 certification

IT Governance

It is therefore essential that your implementation team is appropriately trained in order to ensure the success of the project. Self-study vs training course. E-learning also only provides training for individuals and does not support the training and coordination of a wider team.

Finance sector must simplify staff awareness training

IT Governance

Financial services firms must do more to educate employees about cyber security, according to the FCA (Financial Conduct Authority). In a report published last month , the FCA urged organisations to tackle staff awareness training at all levels, and to ensure the lessons are simple and appropriate to the environment that employees work in. Organisations need to make staff awareness training a board-level priority. Staff awareness training is a crucial part of this.

GUEST ESSAY: 5 anti-phishing training tools that can reduce employees’ susceptibility to scams

The Last Watchdog

The vast majority of cyber attacks against organizations pivot off the weakest security link: employees. Related: Gamification training gains traction. This is a platform for security awareness training and simulated phishing tests focusing on the problem of social-engineering. Its cloud-based service helps its’ clients to schedule automated training campaigns and simulated phishing attacks. This service offers automated phishing tests and training modules.

ADAPTURE to Host 2019 F5 ASM Training in Atlanta

Adapture

February 15th, 2019 – ADAPTURE announced it will host a 2019 F5 Application Security Manager (ASM) Training in Atlanta, GA, from March 4th to March 7th, 2019. News & Press f5 F5 training