Photo by Hulki Okan Tabak on Unsplash If 2020 taught us anything, it was that things change, unexpected things happen. Any security practitioner will tell you that security threats are always...
read more
Large numbers of us have been required to get used to working from home (WFH) in 2020 and, as we approach the turn of the year, many of us are getting a little fed up with it. But, despite the...
read more
2020 has seen a massive shift towards home working. By and large, businesses seem to have coped with the logistical, health and safety, and security consequences of that shift; and people seem to...
read more
There is no doubt that face-to-face security awareness activities are a valuable part of the practitioner’s toolkit. But, given current events, we need to think differently. In this article we...
read more
The statement “security is everybody’s responsibility” is a common refrain. And it is an ideal end-state culture for many organisations. Certainly from the perspective of the IT Security team –...
read more
It’s a commonly held belief that we learn from failure. But recent research has found the opposite: failure undermines learning. The results of this research raise questions about...
read more
One organisation recorded just a 17% completion rate following their initial email asking people to do mandatory security awareness training…
read more
Ask a security practitioner what they want from a security awareness programme, and the immediate response you receive will sometimes be “to tick a compliance box”, sometimes “to reduce security...
read more
In part two of this series of blogs reporting on our research project to “Reimagine Security Awareness” we feedback on what users told us would make them engage with security awareness training....
read more
Mention the phrase “mandatory training” to almost any employee and they will likely roll their eyes in despair. But security awareness must be part of the cyber defence strategy in any...
read more