The Top 10 Security Awareness Topics

Posted by Ragnar Sigurdsson

Security Awareness training is essential for companies but can be a daunting task.  Recently the new General data protection regulation (GDPR) took effect in Europe.  Compliance is necessary for all companies and this new regulation makes it mandatory for many companies to assign a dedicated Data Protection Officer (DPO) to handle their data security affairs.  

Read More

Topics: security awareness, GDPR, checklist, awareness training

AwareGO is at Booth K70 in Infosec London.

Posted by Ragnar Sigurdsson

We are attending Infosec Europe at the Olympia hall in London from June 5th - June 7th. 

Read More

Topics: GDPR, cyber security, awareness training, infosec

Is Security Awareness Training getting outdated?

Posted by Ragnar Sigurdsson

 

You are responsible for security awareness training, but you are not a teacher.

So why are you responsible for training, when it is your responsibility to protect the company's data?

The truth is, hackers, like many people, tend to choose the path of least resistance to compromise the security of organisations.
 
This path is very often through people, and cyber security threats are exploited through human behaviour. It is usually the uninformed employees that lead to the breaches.
 
That is negative in the way that human behaviour is predictable and are thus vulnerable to attacks.
 
The good news is that through training and awareness the risk from these threats can be reduced.
 
Back to the training part. What you need to understand is that some of your employees are lazy.
 
They might recognise that security awareness training is essential, but they want it to be over as fast as possible.
 
If you process personal information about Europeans, the GDPR legislation is around the corner.
 
Employees don't want to struggle to read and digest boring security awareness text. They want to be able to understand it quickly and efficiently and continue with their day to day job.
 
Just because they want to absorb this content quickly doesn't mean quick training programs is ineffective.
 
A video is a tool that can take your security training from bland to exciting.
 
30 seconds of video is capable of conveying much more information than any text article.
 
Videos have been used for marketing purposes for some time now. According to HubSpot, video is here to stay [1]. YouTube is also the world's second largest search engine, which supports that.
 
According to an upcoming report from HubSpot Research, 54% of consumers want to see videos from brands they support. [1]
 
 
So it's strange, then, that some people don't understand how useful it is to include videos in their training program.
Read More

Topics: security awareness, dpo, data protection officer, GDPR, awareness training, video training

6 ways to recognise phishing emails and how to avoid being scammed

Posted by Ragnar Sigurdsson

Phishing is the attempt to obtain sensitive information such as usernames, passwords, and credit card details by disguising as a trustworthy entity.

Read More

Topics: security awareness, cyber security, phishing, email security

The 2018 Security Awareness checklist

Posted by Ragnar Sigurdsson

Security Awareness training is essential for companies, but can be a daunting task.  This year the new General data protection regulation (GDPR) will take effect in Europe.  Compliance is necessary for all companies and this new regulation will make it mandatory for many companies to assign a dedicated Data Protection Officer (DPO) to handle their data security affairs.  

Numerous new DPO's will be starting each month on their new jobs, and one of the DPO's main tasks is to handle security awareness training at their company. We know this can be overwhelming when you are starting and it is hard to know where to begin.  So we created a simple checklist for the DPO's to help them get started and help make this process at least a little bit easier.

Currently our list contains 24 subjects that every DPO needs to be aware of, but we will be updating this list on a regular basis.   

If you feel that anything is missing, we would appreciate the hear from you at info@awarego.com 

Download DPO checklist - Security awareness
Read More

Topics: security awareness, dpo, checklist

Awareness raising made simple for the DPO

Posted by Ragnar Sigurdsson

Ok, so now you are the Data Protection Officer.  One of your primary duties is awareness raising and training of staff involved in processing operations, a simple task, right?

Read More

Topics: security awareness, dpo, data protection officer, tasks, GDPR, cyber security

Why not Security Awareness month, every month?

Posted by Ragnar Sigurdsson

Last October we had the annual security awareness month and I wonder if security awareness should next be on the agenda after eleven months have passed? I for one sure hope not, I hope security awareness is a subject that should be “on” every month of the year. Security awareness is a subject that needs to be on a constant reminder at an organization, so it´s fresh in the employee’s mind always, not just one month of the year. It is a subject far more important than that.

Read More

Topics: security awareness, awareness month