The Trouble if Security Awareness Training Is Mainly a Punishment

Every technology leader wants a security-aware, cyber-savvy enterprise culture. But what does that mean and how can we get there? There is an ongoing debate regarding security awareness training techniques, engagement and overall effectiveness. Let’s explore. Creating an enterprisewide “culture of security” is almost always listed as a top priority for experienced security and technology […]

Awareness is only the first step

The lack of reliable indicators means senior management does not know if recommended security behavior is actually followed in practice. In today’s modern organizations, employee attention and efforts are consumed with constant messages that take time and attention away from primary productive activity. Since current CET often recommends behaviors that conflict with productive tasks, it […]

CSTV: Sicherheitsinterview der Woche mit Marcus Beyer über „Security Awareness Architektur im Unternehmen“

Was versteht man unter Sicherheitsarchitektur? Unser heutiger Gast Marcus Beyer bezeichnet sich als Security Awareness Architekt und erläutert in dem Zusammenhang seine Aufgaben. Diese bestehen vor allem darin, Awareness- bzw. Sensibilisierungskampagnen im Unternehmen zu gestalten. Dieses Vorhaben hängt mit unterschiedlichen Herausforderungen zusammen. Worauf ein Sicherheitsarchitekt achten muss und welche weiteren Herausforderungen entstehen, erfahren Sie im […]

Styling Security Awareness for Maximum Effect

The role of employees in information security cannot be overstated – after all, technology alone cannot protect your systems without their involvement. In fact, your workforce is your greatest single asset in the battle against increasingly sophisticated and persistent threats. And what’s equally true is that one size definitely doesn’t fit all when it comes to the style of […]

Measure Culture to Measure Security Success

We’re all familiar with the old adage that ‘if you can’t measure it, you can’t manage it’, and that applies equally to information security. Before you even begin to establish an effective security culture through awareness, you have to know where you’re starting from, so that you can prioritise actions and track progress. But how exactly […]

Security: Are You Speaking the Right Language?

Protecting an organisation against cybercrime is at the top of the list for most executives. A positive security culture which effectively “co-opts” every employee onto the front line is a formidable weapon in the battle against the rising tide of security threats. Yet, making every individual aware of their contribution and fostering partnership in a way that […]

Security and the Power of the Human Dimension

It’s often said that technology is only part of the answer to securing increasingly complex information systems. The other crucial element is people. And organisations that actively engage employees in security awareness and the social interaction of technology also tend to have the best IT security. In fact, you ignore the impact of the human factor […]