Free resources for cybersecurity awareness and training are out there – links to many of them are provided here
Cybersecurity training and awareness programs need not break the budget. This article lists free resources that are readily accessible and can help you find ideas, content, and contacts to assist in your efforts.
Of course, as I said last year, such programs “will not guarantee complete cyber safety for companies, but they can go a long way towards making workers more cyber-aware” (see: Cybersecurity training still neglected by many employers ). When combined with good policies and controls, security education definitely improves an organization’s resistance to attack.
Over the past 12 months I think I have seen an increase in the number of hands raised when I ask audiences: “Has your employer provided you with any training and education around cybersecurity?” If this is a real trend, not just an anecdotal result of my informal research, then I am encouraged. But to be clear, I am not claiming any personal credit for such a trend – there are many dedicated infosec professionals doing far more than I to advance the worthy cause of security training and awareness.
I was fortunate to meet some of these folks last week at an event called Security Professionals Conference 2019 presented by EDUCAUSE , the nonprofit association that helps higher education “elevate the impact of IT.” I was honored to serve on a panel consisting of myself, Robert Jorgensen, Cybersecurity Program Director and Assistant Professor at Utah Valley University, and Kelvin Coleman, Executive Director of the National Cyber Security Alliance. The panel was titled “ Cybersecurity Woke: Effecting Positive Change Through Outreach and Education ” and it was skillfully moderated by Bob Turner, the CISO of the Univeristy of Wisconsin-Madison.
At the end of the session I promised the audience that I would share – here on WeLiveSecurity – links to the awareness and training resources that I had curated, so that anyone who is interested can easily find them. I hope at least some of these prove to be helpful. If you know of others, please consider adding them in the Discussion section below.
A few years ago I joined something called Peerlyst , which describes itself as a “place where security experts share their knowledge, learn from each other, and build their reputation.” Although it is not a non-profit, a lot of free resources have been posted in its wiki-style website. Here are some that I think may be useful in the current context:
A project to crowdsource a security awareness training checklist
The 9 Security Awareness Training Topics Your Employees Need for 2019! – Emma Woods
The 6 things MSP’s Need To Look Out For When Investing in Security Awareness Training – Emma Woods
A list of open source, free and paid phishing campaign toolkits
Free 15 minutes training video: Threat Landscape – IoT, Cloud, and Mobile
There are quite a few security-related associations that you may be able to tap for help with your security training and awareness program. Looking for an expert to come speak to your employees or students? Want to connect with other people working on cybersecurity? in your sector? in your area? One of the following might have what you’re looking for.
ISACs: these are the Information Sharing and Analysis Centers, non-profits that “provide a central resource for gathering information on cyber threats to critical infrastructure and providing two-way sharing of information between the private and public sector.” There is probably one for your part of the economy. For example, if you are in education, then REN-ISAC is the one you need to know about. This page at the National Council of ISACS will lead you to them all.
Infragard: this is the public-private partnership spearheaded by the FBI and now accessible via 82 chapters around the country. Joining requires vetting, but the benefits are well worth the effort. You can apply here .
ISSA: this is the Information Systems Security Association and it offers you “a network of 10,000 colleagues worldwide to support you in managing technology risk.” There are many chapters around the world.
ISACA: previously known as the Information Systems Audit and Compliance Association, it serves 140,000 professionals in 180 countries, so there is probably a chapter near you.
(ISC)2: you probably know the International Information System Security Certification Consortium (ISC squared, get it?), from its well-known CISSP qualification, but this educational non-profit membership organization does a lot more than that. Check out the website .
CompTIA: while security is not the sole focus of this non-profit computer trade industry association and certification body, it can be a great source of information about cybersecurity. Consider connecting with the IT Security Community .
Our organization recently released a 100% free and open-source cybersecurity awareness presentation that was several months in the making. We are trying to get somewhat of a “grass roots” movement started. Basically, IT and security folks can take the content and present it in their own communities – libraries, business events, their organization, etc. You can read more about the effort and download the material below. https://www.treetopsecurity…
buy dumps cc best place to buy fullz