- Blog
- Other
Other
Published on June 21, 2010 by Karen Letain in Other, Planning
Below is the promised Part 2 of the list of free resources. If you need to “freshen” up your existing training or are looking for potentially new ideas for security awareness, some of these links may be helpful. If you have any more you would like to share, we would love to hear about them.
http://csrc.nist.gov/publications/nistpubs/800-16/800-16.pdf - NIST - Information Security Requirements
http://www.iwar.org.uk/comsec/resources/sa-tools/ - Information Warfare Site Resources
http://www.articulate.com/rapid-elearning/9-free-tools-that-help-me-build-better-e-learning/ - great e-learning tools!
http://moodle.org- open source CMS/LMS - if there is anyone out there who still has not discovered this one!
http://elearningtech.blogspot.com/2009/12/elearning-templates-20-resources.html - free elearning templates
http://www.learningsolutionsmag.com - great online magazine with excellent articles and insight
http://www.csoonline.com/article/493941/seven-practical-ideas-for-security-awareness
http://www.csoonline.com/article/221058/ideas-from-security-awareness-survey-respondents - 2006 article which is a bit dated but the ideas still apply today
http://www.gideonrasmussen.com/sectips-full.html - 24 security awareness tips by Gideon T. Rasmussen
Published on May 17, 2010 by Karen Letain in News, Other
I always love seeing blog entries that contain great resource references. So, I thought I would start one! Here is the start of a list that I decided to start compiling of some really good blogs that contain a ton of resources, tips, tricks and more links. Feel like sharing yours and growing the list?
Around the Corner-MGuhlin.org
Box of Tricks
Creative Teaching
Corporate eLearning Strategies and Development
Custom Training and eLearning Blog
Educational Origami
Experiencing E-Learning
Jane’s E-Learning Pick of the Day
Kirsten Winkler
New Learning Playbook
Rapid eLearning Blog
Sue Waters Blog
Workplace Learning Today
Published on March 22, 2010 by Karen Letain in Other, Planning
Consistent updates will assist you in managing change throughout the yearly life cycle of your security awareness program. It is imperative that you update your program to ensure that training/ awareness/education deployments do not become stagnant and therefore irrelevant to real emerging issues faced by the organization. A planned and consistent update program will also allow you to address changes in security policy, directives and procedures driven from new threats, technologies or legislation. The following 5 steps we hope will assist you in managing program changes:
1. The awareness program should be continuously updated as new technology and associated security issues emerge. Typical program refresh time is every 12 months but changes in an organization’s policies or new emerging threats might dictate a shorter refresh cycle.
2. New training requirements will emerge as new skills and capabilities become necessary to respond to changes in technology and the overall security landscape. Look at implementing role-based e-learning – ie., manager training for new and existing managers, IT admin training, etc.
3. Changes to the organization’s objectives and/or mission can also affect how to best design training content and methods. Review resources and determine what mix of e-learning/seminar and/or outsourced training is required and balance training methods on both your current resources and budget.
4. Emerging trends and regulations/laws will also impact the type and extend of security awareness activities necessary to keep users educated about the latest threats and best practices.
5. New security directives will also drive the need to update and or explore additional training methods or components.
Published on December 20, 2009 by Karen Letain in News, Other
http://www.forbes.com/2009/12/10/adobe-hackers-microsoft-technology-cio-network-software.html
Forbes recently compiled a list of the seven Most-Hacked software titles for 2009. They took a survey of security professionals from various companies including Verisign, TippingPoint, iDefense and Qualys. Based on this survey, Forbes found that the following were the most hacked software titles from 2009.
- Adobe Reader
- Internet Explorer
- Mozilla Firefox
- Adobe Flash
- Apple Quicktime
- Microsoft Office
- Microsoft Windows
Even though Adobe has become a major focus for hackers, old targets such as Explorer and Firefox are still far from secure. Researchers also note that hackers are turning awary from bugs in operating systems to focus on applications. Partly because operating systems are more securely coded and are systematically patched more frequently than applications that run on them. Application patches are not implemented as frequently by users even after they are issued by a vendor.
For the new year, make sure you keep on top of your ptaches and make sure you are especially dilligent with patches released by your application vendors.
Have a safe and prosperous new year! Our best wishes to all of our clients and followers for the new year.
Published on December 04, 2009 by Karen Letain in Other, Planning
At schools and colleges across the country and around the world, the use of the Internet and Web for learning and teaching is causing a major change in the landscape of education. Building upon decades of computer networking activities (e.g. e-mail and bulletin board systems), the Internet has produced phenomenal growth in the extent and scope of online education.
Online education has created a new paradigm for teaching and learning different from the traditional classroom experience, and also different from earlier attempts at computer-based instruction. instructional methods and strategies employed in online courses are essentially the same as those used by instructors in their traditional classes, with the exception of student interaction and collaboration.
While online education certainly has it benefits from an ROI perspective over traditional classroom methods, what is inherently missing is the "interaction and collaboration" part. As social media and online communities continue to expand and grow in popularity, educators will need to be able to tap into this new method of communication and adapt online education to fit with the new bite-sized, instantaneous learning methodology. How can we use tools like twitter to get the message through and make it stick? Here is our opportunity to build social education communities and interact with each other regardless of distance to share and learn in a community fashion. How inspiring is that? How are you going to use this new medium in your training plans?
