Cyber Security Institute

§ Current Worries

Top 3 Worries

  • Regulations
  • Old Firewall Configurations
  • Security Awareness

§ Listening

For the best information

  • The underground
  • Audible
  • Executive Excellence
  • Music (to keep me sane)

§ Watching

For early warnings

  • 150 Security Websites
  • AP Newsfeeds
  • Vendors

Friday, July 21, 2006

The Value of Branding Your Security Awareness Program

Computing Technology Industry Association (CompTIA) released results of a study earlier this year that cites human error was responsible for nearly 60 percent of information security breaches experienced by organizations over the last year.  Additionally the results of the study show that most companies don’t require security awareness training and only 36% of companies surveyed offered end user security awareness training.

While we have installed firewalls, intrusion detection systems, robust anti-virus and anti-spyware solutions, and strengthened authentication methods, we have still largely ignored security awareness training.  And when the authors say ignored, she means that most companies now have an Acceptable Use Policy in place that employees have to sign upon employment, but that’s where the effort stops.  Security awareness programs are about changing culture.

Posted on 07/21