Taking it to the people

Taking it to the people

There is no doubt that face-to-face security awareness activities are a valuable part of the practitioner’s toolkit. But, given current events, we need to think differently. In this article we explore why face-to-face sessions can be so effective. And look at how we...
Is security everybody’s responsibility?

Is security everybody’s responsibility?

The statement “security is everybody’s responsibility” is a common refrain. And it is an ideal end-state culture for many organisations. Certainly from the perspective of the IT Security team – they provide the tools and controls, but everyone does their bit in...
Still chasing users to do their awareness training?

Still chasing users to do their awareness training?

One organisation recorded just a 17% completion rate following their initial email asking people to do mandatory security awareness training… …it’s little wonder some businesses end up with a cottage industry of line managers, HR and infosec staff chasing people to...
Reimagining Security Awareness – Do dos

Reimagining Security Awareness – Do dos

In part two of this series of blogs reporting on our research project to “Reimagine Security Awareness” we feedback on what users told us would make them engage with security awareness training. Whereas part 1 covered the “do nots”, part 2 covers the “do dos”. We can...