Blog:

I got to spend this week in Nashville, Tennessee presenting at the DoD's annual Information Assurance workshop. Sponsored by the NSA, over 2,000 members from all over the government attend. I presented my talk Securing The Human, you can download the presentation complete with notes from here. I was impressed how passionate many members of the government and military are about awareness and creating a secure culture. During the event two things stood out for me.

• I found some great free security resources developed by the US government. While primarily for the US DoD community you may be able to find

I'm excited to announce you can now take SANS two day MGT 433 course from home through SANS vLive. SANS MGT 433 (also known as Securing The Human: Building and Deploying an Effective Security Awareness Program) is a two day class I developed to change and improve how organizations approach security awareness. The goal of this class is to take awareness beyond just compliance and learn how you and your organization can reduce risk by changing behaviors, and then measure those changes. The course is based on the awareness programs of over ten different organizations, from as

One of the things I would like to do is better understand the resources parents have to help protect their children, specifically tools for monitoring kids activities. One of the things I've been dissapointed in is the poor selection of tools, especially reporting. What would be great is to get an email once a week reporting in detail what each child's activity was on their computer. I've been testingNorton Online Family for the past couple of weeks, and I'm pretty dissapointed. It has alot of features, but the reporting is very weak. The weekly email is nothing more then a detail of what features are enabled. Also, it seems to be

This weekend I had the honor to present at the ISSA CISO forum in San Francisco, which focused on the Human Nature of Security. I usually find forums like these to be some of the most challenging crowds as they are facing the day to day realities of trying to change behavior. For example, how can your awareness program compete against other required training such as privacy, sexual harassment or ethics? How do you get doctors or lawyers to actually listen? We had some great discussions. If you would like to get a copy of the presentation, you can download the presentation Securing

If you are attending SANS Orlando this March, consider signing up for Family Night. This is a free one hour talk on how parents can keep their kids safe and secure when they are online. The Internet comes with unique risks, especially for young, trusting children. At the same time we all want our children to develop and learn the online skills they need to be successful in the 21st century. I'll be focusing on the three most common risks your children face when online and what you can do to protect them. Kids are more then welcome to attend the workshop (we plan on having popcorn at the event for all attending). After the