Ask a security practitioner what they want from a security awareness programme, and the immediate response you receive will sometimes be “to tick a compliance box”, sometimes “to reduce security...
read more
Re-imagining Security Awareness. What did users tell us would make them engage with security awareness training?
read more
Mention “mandatory training” to almost any employee and they will likely roll their eyes in despair. So how do we engage people to drive secure behaviours?
read more
Security awareness is, and will remain, a critical part of any security programme. But are companies making the wisest investment of time and money in this area? Legal and professional services firms...
read more
A post phishing-test survey reveals some intriguing perceptions
read more
Caught in a flash... An interesting analogy for phishing tests is speed. Influential voices in academia and at the NCSC have started to raise some important issues with the approach.
read more
Security awareness training is an essential part of our organisational resilience to the growing risk from and impact of cyber-attacks
read more
How could a simple picture of a fly painted on a urinal make the bathrooms at Amsterdam’s Schipol airport 80% cleaner? The answer is “Nudging”.
read more