Welcome to Scribd!

1.12 Establish and Maintain A Security Awareness, Education, and Training Program

Uploaded by

0% found this document useful (0 votes)

74 views4 pages

Security is a shared responsibility between organizations and individuals. Education programs should be tailored to different user roles to improve understanding of best practices and responsibilities. Effective training involves different methods depending on the level of insight, knowledge, or awareness needed, with education providing long-term understanding, training imparting intermediate skills, and awareness building short-term knowledge. Role-based and social engineering training help ensure the right training reaches the intended audiences.

Original Description:

CISSP Domain 1 - Security Awareness Trainings

Original Title

1.12 Establish and maintain a security awareness, education, and training program

Copyright

Available Formats

PPTX, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PPTX, PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

74 views4 pages

1.12 Establish and Maintain A Security Awareness, Education, and Training Program

Uploaded by

Manoj Sharma

Copyright:

Available Formats

Download as PPTX, PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 4

Search inside document

Security is a Shared Responsibility

Most individuals are not aware of the potential threats and best
practices

The End user behaviour counts

Emphasis on Compliance

To understand expected responsibilities and acceptable behavior

Education program should be tailored as per user roles and

audiences
NIST SETA Model
Security Education Training Awareness
Attribute Why How What

Level Insight Knowledge Information

Objective Understanding Skill Awareness

Teaching Method Discussion, Seminar Lecture, Case Study, Interactive, Video,

Hands-on posters, games

Test Measure Essay Problem Solving True / False or MCQ

Impact Timeframe Long-term Intermediate Short-term

Role Based Awareness Training
• Right training for right peoples

Education Training Awareness

• Executive users • System admins • End users

• System Owner • Tech support • Contractors
• Data Owner
Social Engineering Training

Social EngineeringSocial engineering, in the Employees must be trained on :

context of information security, refers to • How different social engineering attack works
psychological manipulation of people into • What is the primary symptoms of a social engineering attack
performing actions or divulging confidential • Recommended actions
information • Regular testing / contingency exercises

Penetration Testing: Protecting networks and systems
From Everand
Penetration Testing: Protecting networks and systems
Kevin Henry
No ratings yet
Use of Cyber Threat Intelligence in Security Operation Center
From Everand
Use of Cyber Threat Intelligence in Security Operation Center
Arun E Thomas
No ratings yet
Security Education, Training and Awareness Program
Document2 pages
Security Education, Training and Awareness Program
Anusha K
No ratings yet
Lesson 5 - Incident Management
Document66 pages
Lesson 5 - Incident Management
Zozer Mbula Lwanga
No ratings yet
Kaspersky Security Intelligence Training
Document5 pages
Kaspersky Security Intelligence Training
ppicyber
No ratings yet
Pervasive Themes in IT PDF
Document18 pages
Pervasive Themes in IT PDF
Gil Nicholas Cagande
No ratings yet
Eclectic Iq
Document17 pages
Eclectic Iq
riyan
No ratings yet
Five Best Practices For Communicating Security Awareness Training Impact
Document11 pages
Five Best Practices For Communicating Security Awareness Training Impact
Manixhome Mm
No ratings yet
Claned ZharBiz Cyber Security For Leaders Course
Document4 pages
Claned ZharBiz Cyber Security For Leaders Course
Robert Rainman
No ratings yet
Awareness Training: IT Best Practices For Community Colleges Part 4
Document37 pages
Awareness Training: IT Best Practices For Community Colleges Part 4
rokib0116
No ratings yet
Introduction To Cybersecurity
Document15 pages
Introduction To Cybersecurity
Jozebel Cardoso
100% (1)
Tanner Security Simulation
Document13 pages
Tanner Security Simulation
MLastTry
No ratings yet
9-Risk MGMT
Document60 pages
9-Risk MGMT
yazeed
No ratings yet
Assignment - Application of Learning Theories in Information Technology
Document10 pages
Assignment - Application of Learning Theories in Information Technology
Kharylle Ederline Domingo
No ratings yet
Ds Threat Intel Foundations
Document3 pages
Ds Threat Intel Foundations
DORG
No ratings yet
Defining Threat Intelligence Analysis Slides
Document16 pages
Defining Threat Intelligence Analysis Slides
waruenk
No ratings yet
InfoSec Awareness
Document51 pages
InfoSec Awareness
Gonçalo Almeida Teixeira
No ratings yet
Digital Forensics in Cyber Security Exercises-Min
Document6 pages
Digital Forensics in Cyber Security Exercises-Min
joseph michael
No ratings yet
Cyberstalking: Teacher 'S Guide
Document10 pages
Cyberstalking: Teacher 'S Guide
Ian Christian Alangilan Barruga
No ratings yet
INF 203 Information Security Syllabus
Document8 pages
INF 203 Information Security Syllabus
abilkhandulat
No ratings yet
Demystifying NIST Cybersecurity Framework: Identify
Document1 page
Demystifying NIST Cybersecurity Framework: Identify
Corey Molinelli
No ratings yet
CS 107-Information Assurance and Security
Document5 pages
CS 107-Information Assurance and Security
Aidan Litargo
No ratings yet
Cyber Security - Course Outline CES LUMS
Document3 pages
Cyber Security - Course Outline CES LUMS
xovor75189
No ratings yet
NCSC Incident Management Be Resilient Be Prepared
Document28 pages
NCSC Incident Management Be Resilient Be Prepared
naomisowunmi
No ratings yet
Module 1
Document7 pages
Module 1
shibanibose
No ratings yet
Namei Polytechnic Institute Course Syllabus: First Quarter (Unit 1: Working in A Digital World)
Document11 pages
Namei Polytechnic Institute Course Syllabus: First Quarter (Unit 1: Working in A Digital World)
ABIGAIL CORTEZ
No ratings yet
Syllabus PCLU FE 1
Document4 pages
Syllabus PCLU FE 1
Maestro Cabado
No ratings yet
Cyber Security at Sea
Document30 pages
Cyber Security at Sea
Joseph Gracious
No ratings yet
BSBXCS402 Presentation
Document27 pages
BSBXCS402 Presentation
Alejandro Bejarano Garcia
No ratings yet
Human Factor in Corporate Cybersecurity: Learn More On
Document4 pages
Human Factor in Corporate Cybersecurity: Learn More On
Rob
No ratings yet
The Buyer's Guide To Cyber Threat Intelligence: 11 Questions To Answer Before You Invest
Document17 pages
The Buyer's Guide To Cyber Threat Intelligence: 11 Questions To Answer Before You Invest
ginggers
No ratings yet
Incident Responder'S Field Guide
Document12 pages
Incident Responder'S Field Guide
andrisuranti
No ratings yet
@2011 Art InformationSecutirtyCompetenceTest
Document7 pages
@2011 Art InformationSecutirtyCompetenceTest
Hugo Lima
No ratings yet
Scaling The Security Wall Developing A Security Behavior Intentions Scale (SeBIS) - Proc ACM CHI'15 Conf Hum Factors Comput Syst 2015
Document10 pages
Scaling The Security Wall Developing A Security Behavior Intentions Scale (SeBIS) - Proc ACM CHI'15 Conf Hum Factors Comput Syst 2015
Yaakove Bezrukov
No ratings yet
Assignement Sks Conference Paper
Document6 pages
Assignement Sks Conference Paper
syakirin3802
No ratings yet
Information Assurance and Security 1 - Obe Syllabus
Document7 pages
Information Assurance and Security 1 - Obe Syllabus
Rige Mae Muesco
100% (1)
Digital Safety
Document20 pages
Digital Safety
nizam
No ratings yet
Tracking Security Awareness KPIs
Document10 pages
Tracking Security Awareness KPIs
tallraj
100% (1)
Incident Response Ebook PDF
Document38 pages
Incident Response Ebook PDF
cs44
No ratings yet
Chief Information Security Officer Program Brochure
Document12 pages
Chief Information Security Officer Program Brochure
Melissa P. Lòpez Blizzard
100% (1)
Raising Information Security Awareness in The Academic Setting
Document6 pages
Raising Information Security Awareness in The Academic Setting
Scholaztica Wahyu
No ratings yet
Foundation of Information Security: Learning Objectives
Document12 pages
Foundation of Information Security: Learning Objectives
Jenny Apilado
No ratings yet
Cyber Security Lesson 4
Document22 pages
Cyber Security Lesson 4
Ushna Abrar
No ratings yet
Wek 1-8 Ims Information Assurance and Security
Document38 pages
Wek 1-8 Ims Information Assurance and Security
Darwin Gapusan Raralio
No ratings yet
Cyber Security
Document11 pages
Cyber Security
GM Rajput
No ratings yet
CS - AI Improved Presentation V2
Document22 pages
CS - AI Improved Presentation V2
Tzar Umang
No ratings yet
Bca Ds Sem-5 Information Security Fundamentals
Document4 pages
Bca Ds Sem-5 Information Security Fundamentals
Vikas Sharma
No ratings yet
MixMode Ebook The Role of AI 823 2
Document10 pages
MixMode Ebook The Role of AI 823 2
jonnorwood
No ratings yet
IT 513 Course Outline
Document4 pages
IT 513 Course Outline
Waleed Hussain
No ratings yet
Managed Proofpoint Security Awareness Training: Enterprise Edition
Document5 pages
Managed Proofpoint Security Awareness Training: Enterprise Edition
KE
No ratings yet
Cognitive Ergonomics 1
Document24 pages
Cognitive Ergonomics 1
Shenland
No ratings yet
Course Plan Information Security
Document7 pages
Course Plan Information Security
Malik Kashif
No ratings yet
Information Security Awareness Are View of Methods Challenges and Solutions
Document10 pages
Information Security Awareness Are View of Methods Challenges and Solutions
KANISHK VARDHAN SINGH
No ratings yet
Brochure MIT Sloan Cybersecurity 03-June-21 V59
Document13 pages
Brochure MIT Sloan Cybersecurity 03-June-21 V59
Igor
No ratings yet
A Conceptual Foundation For Organizational Information Security Awareness
Document11 pages
A Conceptual Foundation For Organizational Information Security Awareness
joao1504
No ratings yet
A Password Generator Tool To Increase Users' Awareness On Bad Password Construction Strategies
Document5 pages
A Password Generator Tool To Increase Users' Awareness On Bad Password Construction Strategies
Ankush Malode
No ratings yet
Kaspersky Security Awareness Datasheet GAT 0322 EN
Document6 pages
Kaspersky Security Awareness Datasheet GAT 0322 EN
gh
No ratings yet
Security Engineer: Nanodegree Program Syllabus
Document15 pages
Security Engineer: Nanodegree Program Syllabus
Luffy Denzo
No ratings yet
Introduction To Hacking Project
Document10 pages
Introduction To Hacking Project
bhagwatgayal10
No ratings yet
Uct Fundamentals of Cybersecurity Online Short Course Information Pack
Document8 pages
Uct Fundamentals of Cybersecurity Online Short Course Information Pack
bnhamz
No ratings yet
1.5 Understand, Adhere To, and Promote Professional Ethics
Document1 page
1.5 Understand, Adhere To, and Promote Professional Ethics
Manoj Sharma
No ratings yet
1.4 Privacy
Document23 pages
1.4 Privacy
Manoj Sharma
No ratings yet
1.2 Evaluate and Apply Security Governance Principles
Document22 pages
1.2 Evaluate and Apply Security Governance Principles
Manoj Sharma
100% (1)
1.1 Understand and Apply Concepts of Confidentiality, Integrity and Availability
Document14 pages
1.1 Understand and Apply Concepts of Confidentiality, Integrity and Availability
Manoj Sharma
100% (1)
Privacy Laws
Document11 pages
Privacy Laws
Manoj Sharma
No ratings yet