Security Awareness Training – How to do it properly

The 2009 CSI Computer Crime survey, one of the most respected reports covering insider threats, says insiders are responsible for 43 percent of malicious attacks. Twenty-five percent of respondents said that over 60 percent of their losses were due to non-malicious actions by insiders.

It is well known that staff (user) education is one of the most paramount and important aspects of delivering and maintaining a successful Information Security programme to any organisation (and one of the hardest to deliver).
Continue reading