These are some good advices on how to make effective security awareness training.
The main points are:
- Get management buy-in
- Target your security training
- Make it pervasive
- Presentation is everything
- Explain why security policies are needed
- Show users specific examples of security no-nos
- Make it easy for users to comply with security policies
- Maintain the right attitude
- Use the right metrics to gauge effectiveness of training
Advertisements