go to sections menu

NCSAM: Is training to stay safe not sinking in? from blog The Technology blog and podcast

This is for the technology blog and podcast Commentary, articles, and podcasts

header picture for Ingegno theme

You are here: article commentary , security news and commentary > NCSAM: Is training to stay safe not sinking in?

Go to Homepage, contents or to navigation menu

NCSAM: Is training to stay safe not sinking in?

The second post I found of interest deals with Phishing and the training behind it. In the question that Phishlabs posts for their first post in their series Training Not Sinking In? Try a Programmatic Approach Phishlabs dives in to several different topics they’ll be covering during the week. Headings in this blog post include:

  • Choosing a Training Program
  • Designing a Captivating Awareness Campaign
  • Implementing a Reward & Remediation Strategy

Each section is quite ointeresting in this endeavor to train each and every one of us on how to stay safe as well as getting training that would benefit everyone in a company setting.

One tip is to take it slow, and not give a bunch of stuff in one setting.

Choosing the best training program isn’t enough, though. It’s critical that you understand how the organizational climate impacts training success. In
a later blog post, we’ll discuss this in detail.

I think this is very important. You may have older people involved in your company, and they may not understand this. I think that shorter lessons will be the key.

Just like my struggles in my braille course, training to spot problems before they are a problem for your small business, yourself as an individual, or even if you work for another business of any size, you need to understand what you’re looking for. In the braille course, its understanding the certain parts, and trying to put it all together. My mistake in this was to put it together based on my understanding of the thing, they wanted the typeforms. The same type of thing is crucial on protecting your business and even your personal finances. You don’t want to figure out how to pay bitcoin to someone just because you clicked on a link that said you did something, or you’re accused of something and it locks up your files.

There are different types of phishing, and I’m really not familiar with the different kinds too well. But this is why we’re learning together, and I’m happy to share what I can understand and of course what I think we should do.

Under the heading of designing a campaign: some of the bulleted points include:

• Choose a cohesive brand
• Include a mix of mediums
• Start marketing your program early

There are two things. First, I am not a marketer. Second, I don’t really have mediums, except for the blog (text) and audio (the podcast) which are both good. But I’d like to develop something and either sell it or offer it for free, but I just don’t know how.

Phishlabs has been doing this a long time, and I give them props. They’ve called me to let me know of issues, and I reached out to them for something. I love the work they do, so I want to pass their knowledge of this to my readers.

Under the rewards program, they write:

What drives your workforce to participate in security training or to practice good security hygiene? What keeps them accountable if they slip up? An effective
reward and remediation strategy that fits within your organizational culture is critical to achieving your learning objectives. As every organization is
different, there is no one-size-fits-all approach. Later this month, we’ll cover this topic in detail.

I’m definitely looking forward to see what they have to say on this. There is no one size fits all approach to teaching, so lets go!

Your thoughts are welcome, and I will await comments and suggestions. Thanks for reading!

Informazioni sull'articolo

NCSAM: Is training to stay safe not sinking in? was released on October 1, 2019 at 9:30 pm by tech in article commentary,security news and commentary.
Last modified: October 1, 2019.

Comments (2)

  1. Comment by tech date 3 October 2019 alle 09:11 (),

    This is a valid point, but if you do know your tech’s telephone number, or way of communicating, you’d know that the other was a scam or possible scam. Just something to think about. No answer is the right answer.

  2. Comment by crashmaster date 2 October 2019 alle 23:00 (),

    That does make me wander.
    To much clicking the links, you’d think you wouldn’t.
    On the other hand, get a crashy issue, a late tech, a scam call and a stressfull environment, put all those together and you could be forgiven if your brain didn’t do a bsod with critical stop.
    My aunt had such an issue, a crash reported to tech support who sent out a tech, who was late due to a new system install in another location, in a stressfull situation made worse by the crash, getting a scam call, thinking it was the tech, and well there you go.
    Realised when they wanted cash.
    The tech came eventually did a reformat on the computers, and apologised for being late.
    Point is, while training may or may not sink in, give any situation with the right conditions and you could easily melt down your cpu.

Leave a comment

You must be logged in to post a comment.

go to sections menu

navigation menu

go to sections menu