Security awareness trainings protect enterprises from data breaches and are necessary in certifying compliance with a wide number of regulatory standardsRead More
Each year for the past 4 years I've made the trek to a new city to join my fellow security awareness nerds, and sometimes to present to them, about what's going on in the security awareness industry. It's a great networking event, sometimes called a 2-day venting session, as we share problems and issues with our programs as well as successes and new ways to approach old problems.Read More
In this webinar, Habitu8 cofounders Jason Hoenich and Chad Loder discuss how to put together a phishing simulation training program. Learn how most companies mis-label repeat responders.Read More
This is the world of social engineering—i.e., tricking people out of private information. It’s cheap, easy, and terrifyingly effective. Here are some of hackers’ favorite ways of using social engineering.
Security Awareness 2.0 is a revolutionary approach that makes training not only more effective, but more enjoyable. Shifting to Security Awareness 2.0 requires a change in attitude and adopting a few basic principles.Read More
National Cyber Security Awareness Month (NCSAM) is a big deal. Occurring every October, NCSAM started life as an American effort and has grown into a worldwide phenomenon. In this webinar, founders Jason Hoenich and Chad Loder use real-world knowledge to discuss how to use NCSAM to engage coworkers and create unique experiences.Read More
Should you train your contractors in cyber security awareness? The short answer is YES, but there are important HR and legal issues you need to consider before rolling it out. If you approach this without careful planning, you could run afoul of taxation and labor laws governing the classification of employees vs. independent contractors. Read on to understand how to navigate this issue and get everyone trained up!Read More
Like many corporate workshops, security awareness trainings have a reputation for being deadly dull. For organizations that want to counter cyberattacks, boredom is a real barrier to fostering a security culture.Read More
We’re stuck in the space of not wanting to acknowledge how crucial and important the process of security awareness program management is with vendors wanting to push and sell a magic product that “does everything”.Read More
Collecting metrics in a constantly changing risk environment can be challenging, especially given the lack of universally accepted measurements. The good news is that there are straightforward ways of obtaining accurate, useful metrics. Here are five ways of securing important metrics.Read More
Security Conferences like RSA and Blackhat are destroying the planet with swag. Should your Security Awareness Program join the destruction?Read More
I'm kind of over all of this complacent industry agreement that hacks will happen because humans are the weakest link. It's become a catchall, responsibility avoiding excuse within the security world. I've heard it spewed profusely at security conferences, in business meetings, and its a rampant excuse/comment on LinkedIn & Reddit posts. It's on the same level as responding to an issue with "well, boys will be boys", or "she shouldn't dress that way if she doesn't..." - no...no no no no.Read More
No one cared. I wanted to prove to my leadership that security awareness programs are crucial, and maaaaaybe I can get a little budget to do more stuff. So I began to consider the viewpoint of my leaders. I wasn't telling them a story.Read More
I’ve walked away from the comfort and security of a high-paying job, in a career trajectory that was just beginning to peak. While I was managing the security awareness & training program for The Walt Disney Company, I began looking for a vendor doing high-quality, funny, security awareness videos. I am so very excited and proud to introduce our new company, Habitu8, Inc. (pronounced ha-bit-chew-ate).