AREN'T BLOGS FUN?? THIS IS OURS.
Should you train your contractors in cyber security awareness? The short answer is YES, but there are important HR and legal issues you need to consider before rolling it out. If you approach this without careful planning, you could run afoul of taxation and labor laws governing the classification of employees vs. independent contractors. Read on to understand how to navigate this issue and get everyone trained up!
Like many corporate workshops, security awareness trainings have a reputation for being deadly dull. For organizations that want to counter cyberattacks, boredom is a real barrier to fostering a security culture.
We’re stuck in the space of not wanting to acknowledge how crucial and important the process of security awareness program management is with vendors wanting to push and sell a magic product that “does everything”.
Collecting metrics in a constantly changing risk environment can be challenging, especially given the lack of universally accepted measurements. The good news is that there are straightforward ways of obtaining accurate, useful metrics. Here are five ways of securing important metrics.
Security Conferences like RSA and Blackhat are destroying the planet with swag. Should your Security Awareness Program join the destruction?
Watch now to hear Jason show you how to build your security awareness program plan! You can even follow along with our free program plan template on our Strategy Guide Page.
I'm kind of over all of this complacent industry agreement that hacks will happen because humans are the weakest link. It's become a catchall, responsibility avoiding excuse within the security world. I've heard it spewed profusely at security conferences, in business meetings, and its a rampant excuse/comment on LinkedIn & Reddit posts. It's on the same level as responding to an issue with "well, boys will be boys", or "she shouldn't dress that way if she doesn't..." - no...no no no no.
No one cared. I wanted to prove to my leadership that security awareness programs are crucial, and maaaaaybe I can get a little budget to do more stuff. So I began to consider the viewpoint of my leaders. I wasn't telling them a story.