Security awareness and training are typically covered under the single heading of Information Security Awareness Training. In fact, that’s the approach I took in the previous two posts on this topic, covering how to change employee behavior at a high level. This high-level approach is appropriate for many organizations, especially those with tenuous management commitment and a meager budget. However, awareness and training, when part of a formal methodology for employee behavior modification, are actually two different activities.
In future posts I will look at creating secure behavior in our organizations with a process for preparing users for more focused training.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment