Editor's Note: Daria Catalui leads the security awareness outreach program at ENISA. She is one of the speakers for the upcoming EU Security Awareness Summit in London on 10 July. Below she discusses what her talk will be on and what you will learn from it.
I am a passionate advocate of eEducation so you can safely assume that I will speak about it at the summit, naturally! At ENISA, the EU's cybersecurity agency we are part of the coalition to enhance e-skills adoption in the EU. We tackle Network and Information Security topics and we believe in a more secure digital environment. For example, I am going to speak about our brokerage work
Editor's Notes: Cheryl Conley is head of Lockheed Martin's Security Education and Awareness team. Lockheed is one of the most targeted (and phished) organizations in the world. Cheryl is one of the speakers for the upcoming EU Security Awareness Summit in London on 10 July. Below she discusses what her talk will be on and what you can learn from it.
During this interactive presentation "Marketable, Meaningful Metrics", Cheryl will provide an overview of Lockheed's Ongoing Phishing Success Story. Cheryl's team has been leading their organisation's phishing program for over 5 years, utilizing
Editor's Notes: John Haren is the head of security awareness for Diageo and one of the speakers for the upcoming EU Security Awareness Summit in London on 10 July. Below he discusses what his talk will be on and what you will learn from it.
Hi folks — I'm John Haren and I will be presenting in London on my experience around creating a network of security champions.I have worked for Diageo for 16 years in a variety of IT roles and I've been in the Information Security area for the last 4 years. I'm married with three children (14, 11, 7) and live just outside Dublin in Ireland. This family life does, as you can imagine, make life
Folks, you have no idea how excited I am to officially announce the upcoming Security Awareness Summits in both London (10 July) and Philly (19 August). As many of you know we held our first Security Awareness Summit in Dallas last year. The results and feedback were so positive we are hosting two this year. The purpose of these summits is to bring together hundreds of awareness officers from around the world to share their stories and lessons learned and to create a super rich environment for networking. You can expect the following at each of the summits:
- Six talks from leading awareness practitioners and researchers. Three of the talks will be on theory and three will be on practical application. You can find the name of the speakers, their talks, abstracts and the full agenda on the summit websites.
One of the biggest take-aways (and surprises) for me from the 2015 Security Awareness Report is the lack of soft skills in our field. Over 75% of those leading or supporting a security awareness program had very technical backgrounds, to include IT admins, security analysts and even webmasters (page 8). In addition, we found most security awareness programs falling under the IT chain of command. Once you read the report it really makes sense. If an organization is concerned about the security of their employees, where do they go? The security team. And who makes up most security teams? Highly skilled and highly technical wizards that live and breathe bits and bytes.
However, awareness is ultimatelyabout changing human behavior, and to do that effectively it comes down to communication. If people do not know what they are supposed to do or why, they will neither be