Categories
-
Recent Posts
- Security Awareness and Social Networks: Why You Should Care, and What You Should Teach
- Poor Delivery – 5 Reasons Why Security Awareness Training Programs Fail – Part 2
- If You’re Going to Use PowerPoint
- Don’t Get Bogged Down in “How To”
- The Wrong Content – 5 Reasons Why Security Awareness Training Programs Fail – Part 1
Archives
Monthly Archives: March 2010
Awareness, Training, and the Four-Stage Learning Model
In some guidance documents (e.g., NIST SP800-16), you’ll find a distinction drawn between “awareness” and “training” even though most of us use the words together when talking about education of end-users. There’s actually a good theoretical basis for differentiating between … Continue reading
10 Laws to Mention in Your Acceptable Use Training
If you’re developing an “Acceptable Use of IT Resources” training course (or even developing the policy itself), this blog post from TechRepublic is a very useful reference. It discusses 10 of the laws that apply to computer users (in the … Continue reading
Posted in Information Security
Leave a comment