Rolling out a large ISATP Program can be an incredibly daunting task. Especially, if you have to ensure that your efforts are measurable in order to meet industry standards or adhere to legislation.

Let’s face it, you can’t measure the number of times employees look at the security awareness (more…)

In my company, we kicked off the Information Security campaign about 4 years ago, and this was focused very heavily on IT staff and processes (insurance industry). At that time we had very few security skills in house, so we brought in an external trainer to deliver the Security Awareness training. We worked with the trainer to develop the course content, the baseline they had was good, but we wanted to added ten topics unique to our environment. (more…)