Educause Security Discussion mailing list archives
Re: Security Awareness Training Tool(s)
From: "Hudson, Edward" <ehudson () CALSTATE EDU>
Date: Thu, 19 Oct 2017 17:02:23 +0000
We use PhishMe and LawRoom content for FERPA and Data Security online. SANS refused to submit a RFP “We are SANS, we don’t submit RFPs” <--actual quote So we went a different direction. We have been very happy with PhishMe (used system wide) and the content from LawRoom. Ed Ed Hudson Interim CISO [cid:image001.png@01D32273.F8B82F00] 401 Golden Shore Long Beach, CA 90802 Tel 562-951-8431 ehudson () calstate edu<mailto:ehudson () calstate edu> I subscribe to e-mail classification: i=Information, a=Action, u=Urgent From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Scott Stoops Sent: Thursday, October 19, 2017 8:44 AM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: Re: [SECURITY] Security Awareness Training Tool(s) We have been looking into security awareness training and have looked at a couple of vendors. We are now looking into the SANS Securing The Human. I'd appreciate any feedback on how well this has worked out. What kinds of feedback has anyone gotten from their users? On Thu, Oct 19, 2017 at 11:39 AM Kevin Cumberland <KCumberland () csmd edu<mailto:KCumberland () csmd edu>> wrote: We use PhishMe also but just for the running phishing campaigns. It's great for that as it has a lot of predefined templates for both phishing and creating awareness newsletters. We use SANS Securing the Human for the content that we then import into our LMS. We have mandated that all employees complete security awareness training Kevin Cumberland Network Security Administrator Information Technology Services College of Southern Maryland kcumberland () csmd edu<mailto:kcumberland () csmd edu> Phone: 301.539.4716<tel:(301)%20539-4716>
Ronald Loneker <rloneker () CSE EDU<mailto:rloneker () CSE EDU>> 10/19/2017 11:25 AM >>>
Sorry I'm late to seeing this. Phishme.com offers training with a phishing simulation program that they charge for. They also do have free training modules for those who cannot purchase their service - I was able to load them into our Moodle LMS to create a training course for our faculty and staff, although we have not mandated the training yet. Ron Loneker, Jr. Director, IT Special Projects College of Saint Elizabeth Henderson Hall, Room 202C 2 Convent Road<https://maps.google.com/?q=2+Convent+Road+Morristown,+NJ+07960&entry=gmail&source=g> Morristown, NJ 07960<https://maps.google.com/?q=2+Convent+Road+Morristown,+NJ+07960&entry=gmail&source=g> Phone: 973-290-4229<tel:973-290-4229> e-mail: rloneker () cse edu<mailto:rloneker () cse edu> CSE's IT department will never ask for your password, social security number or other personal information in an e-mail message. Please do not share any information with others! On Mon, Oct 9, 2017 at 7:49 AM, Martinez, Brian <brm () msu edu<mailto:brm () msu edu>> wrote: Good morning all, With it being National Cyber Security Awareness Month, this inquiry I’ve been sitting on seems particularly relevant: We presently have some training tools for general security awareness, PCI training, and HIPAA training in our primary LMS and have been contemplating moving to a different platform (the tools, not the LMS). I’m curious to know what platforms/tools other institutions are using and whether or not they think it provides great value. Specifically, I guess I’d like to know: * Which training program are you using? * Are there additional modules available such as PCI training? HIPAA? FERPA? Etc. * Is it/can it be integrated with a Learning Management System? * Do you think it provides great value to the userbase you support? * Are you considering switching to something else? Why? * Anything else you’d like to share (e.g. Do you have regular events promoting awareness? Phishing campaigns? Etc.) Please feel free to contact me off list. Thank you! Brian R. Martinez Information Security Michigan State University Office: +1-517-884-8791<tel:(517)%20884-8791> brm () msu edu<mailto:brm () msu edu> -- Scott Stoops Security Analyst II Office of Information Technology | 100 Patterson Technology Center Ashland, OH 44805 (w) 419-289-5405 sstoops () ashland edu<mailto:sstoops () ashland edu>
Current thread:
- Re: Security Awareness Training Tool(s), (continued)
- Re: Security Awareness Training Tool(s) Kevin Cumberland (Oct 09)
- Re: Security Awareness Training Tool(s) WALTER KERNER (Oct 09)
- Re: Security Awareness Training Tool(s) Ronald King (Oct 09)
- Re: Security Awareness Training Tool(s) Ronald Loneker (Oct 19)
- Re: Security Awareness Training Tool(s) Kevin Cumberland (Oct 19)
- Re: Security Awareness Training Tool(s) Scott Stoops (Oct 19)
- Re: Security Awareness Training Tool(s) Francisco Chavez (Oct 19)
- Re: Security Awareness Training Tool(s) Hendra Hendrawan (Oct 20)
- Re: Security Awareness Training Tool(s) K.C. Mah (Oct 22)
- Re: Security Awareness Training Tool(s) Husfield, John C (Oct 24)
- Re: Security Awareness Training Tool(s) Kevin Cumberland (Oct 19)
- Re: Security Awareness Training Tool(s) Hudson, Edward (Oct 19)
- Re: Security Awareness Training Tool(s) Madl, Michael (Oct 19)
- Re: Security Awareness Training Tool(s) Kevin Cumberland (Oct 19)
- Re: Security Awareness Training Tool(s) Harris, Brent (Oct 20)
- Re: Security Awareness Training Tool(s) Martinez, Brian (Oct 11)