Educause Security Discussion mailing list archives

Re: key topics to include in security awareness training materials

From: Adam Stone <adstone () LBL GOV>
Date: Thu, 5 Feb 2009 13:44:58 -0800

We drive our awareness program from our incident statistics and those
of institutions we work closely with.  Our annual awareness training
includes multiple paths based on answers to questions (like do you use
SSH?)  The things that are forked are in brackets below.

Our current topics are:
Risks and Threats
-> Introduction
-> Social Engineering (Specifically highly targeted social engineering)
-> Stolen Credentials
-> {... in SSH specifically for SSH users}
-> Application Attacks (normal apps like adobe, ms office, etc)
-> Personal Info (PII)
-> {Webserver Security for web server administrators and web application coders}

Policies
-> General
-> Min. Security Requirements
-> {Policies specific to System Admins (responsibilities, no spying, etc) }
-> Incident Response
-> {Supervisors (security is an oversight responsibility, etc) }

Full training here: http://www.lbl.gov/cyber/training/csar/item1.html


-------------------------------------------------------------
Adam Stone
Policy, Assurance, and Risk Management, Office of the CIO
Berkeley Lab, University of California
510.486.4650(o) 510.593.7507(c) http://www.lbl.gov/CIO/Policy/

Current thread:

key topics to include in security awareness training materials Tim Cline (Feb 05)
- <Possible follow-ups>
- Re: key topics to include in security awareness training materials Roger Safian (Feb 05)
- Re: key topics to include in security awareness training materials Charles Seitz (Feb 05)
- Re: key topics to include in security awareness training materials Dave Kovarik (Feb 05)
- Re: key topics to include in security awareness training materials Dave Kovarik (Feb 05)
- Re: key topics to include in security awareness training materials David Seidl (Feb 05)
- Re: key topics to include in security awareness training materials Brian Epstein (Feb 05)
- Re: key topics to include in security awareness training materials King, Ronald A. (Feb 05)
- Re: key topics to include in security awareness training materials Donald, A. Wayne (Feb 05)
- Re: key topics to include in security awareness training materials Melissa Guenther (Feb 05)
- Re: key topics to include in security awareness training materials Adam Stone (Feb 05)
- Re: key topics to include in security awareness training materials Gary Flynn (Feb 05)
- Re: key topics to include in security awareness training materials Karl Heins (Feb 05)
- Re: key topics to include in security awareness training materials jeff murphy (Feb 05)
- Re: key topics to include in security awareness training materials Matthew Gracie (Feb 06)
- Re: key topics to include in security awareness training materials Peterman, Martin (mdp4s) (Feb 09)
- Re: key topics to include in security awareness training materials Leon DuPree (Feb 09)
- Re: key topics to include in security awareness training materials Then, Keri (Feb 09)
- Re: key topics to include in security awareness training materials Peterman, Martin (mdp4s) (Feb 09)
- Re: key topics to include in security awareness training materials mcoyle (Feb 10)
- Re: key topics to include in security awareness training materials Leon DuPree (Feb 10)