I have to pass this kind of cause every year at work but i can't memorize all of the modules
-myfive(555);
2013-10-17{82}(#8424536@0)
Something like Identification, authentication, authorization, data integrity, etc.
you must be a developer or an architect. what you said is just one of the many aspects of a Security Awareness program.
-hsl(胡司令/bgk);
2013-10-17(#8424559@0)
传说中的大牛?这个一般是acrcheture/manager才做,尽管是security,security/goverance team 只是提出要求或者说公司有哪些地方需要改进,然后HR负责制定详细的计划。(cissp,cisa,cism 里面都有专门的章节来介绍这个),还是Google比较好
-youngdong(dongdong);
2013-10-18(#8425455@0)
HR? - Human Resources' involvement? Interesting... Also thanks for the pointer to CISSP materials.
-hsl(胡司令/bgk);
2013-10-18(#8425463@0)
i got it... HR to make security awareness a required component of the new hire process - indoctrination....including FTE and contractors
-hsl(胡司令/bgk);
2013-10-18(#8425510@0)
Some googled materials...
-hsl(胡司令/bgk);
2013-10-18{289}(#8425480@0)
CxO support;
Partnering with key departments (e.g. corporate security);
Collateral of multiple channels & formats (with metrics of readership);
Posters (leveraging QR code);
CBT;
Events (Awareness Month,Lunch & Learn);
Security Portal (Knowledge Base);
Behavioral Testing
......