Educause Security Discussion mailing list archives

Re: Security Awareness Program assistance

From: Chris Bunn <chris () ISDECISIONS COM>
Date: Wed, 27 May 2015 17:36:53 +0200

Dear Cathy

As it happens, just this afternoon there is a new game that's been launched that might interest you.

To help support IT professional's efforts to raise user security awareness, IS Decisions have developed the free 
resource : The Weakest Link: A User Security Game.

Any employee, in any position (including the C Suite) from any department can play.

We want it to be a credible independent resource for IT people to use, which is why we've developed it with the input 
of analysts, experts and IT people themselves. It's completely free to use, and we hope that IT people will share it 
with their users to play to try and drive awareness of the issues of user security and insider threat.

So please try it and feel free to share it amongst your users.

http://www.isdecisions.com/user-security-awareness/


Thanks and Kind regards
Chris Bunn


From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Ullman, 
Catherine
Sent: mercredi 27 mai 2015 17:19
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Security Awareness Program assistance

Greetings!

I have been asked to put together a University-wide security awareness program that is phased in over the next two 
years and ideally includes measurements of success.  I would very much like to hear from any of you who have 
successfully undertaken such a project and how you've accomplished it, because this is a larger undertaking than I've 
ever been expected to complete.  I also would prefer not to reinvent the wheel if there are already great ideas out 
there!

The kinds of things I'm looking for include the approach, how the rollout was accomplished, tools being used, measures 
of success.  FWIW I'd prefer our awareness program to be a positive reinforcement type thing, encouraging folks to want 
to be involved rather than a stick-based program.

Feel free to email me off-line if you'd prefer.  Thanks in advance for your help.

Sincerely,
Cathy


Dr. Catherine J Ullman
Information Security Analyst
Information Security Office
University at Buffalo
cende () buffalo edu<mailto:cende () buffalo edu>

Current thread:

Security Awareness Program assistance Ullman, Catherine (May 27)
- Re: Security Awareness Program assistance Chris Bunn (May 27)
  - Re: Security Awareness Program assistance Ullman, Catherine (May 27)
- Re: Security Awareness Program assistance Shamblin, Quinn (May 27)
  - Re: Security Awareness Program assistance Ullman, Catherine (May 27)
  - Re: Security Awareness Program assistance KILDARE,Duane V (May 28)
    - Re: Security Awareness Program assistance Larry K. Emmons (May 28)
    - Re: Security Awareness Program assistance John Husfield (May 29)
    - Re: Security Awareness Program assistance Shamblin, Quinn (Jun 01)
    - Re: Security Awareness Program assistance Shamblin, Quinn (May 28)
  - Re: Security Awareness Program assistance James Farr (May 28)
    - Re: Security Awareness Program assistance Ian McDonald (May 28)

(Thread continues...)