|

Computer Security

»

Security - Management

IT Security Awareness program

View: New views

8 Messages — Rating Filter: Alert me

	IT Security Awareness program by Mai Dashti :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message IT Security Awareness program Dear all ... Can someone help me on how to build good IT Security Awareness program .. Thanx May A Dashti IT Security Officer Risk Management Kuwait Real Estate Bank Tel. (965) 888 999 - Ext. 3144 **************************************************************************** Disclaimer: This Email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this message in error please delete it and any files transmitted with it, after you notify the sender immediately. KREB accepts no responsibility for any such errors or omissions. The information,views and comments within this communication are those of the individual and not necessarily those of KREB. Kuwait Real Estate Bank. **************************************************************************** From - Mon Jan 1 00:00:00 1965 X-Mozilla-Status: 0000 X-Mozilla-Status2: 00000000 From: "Bob Rad
	Re: IT Security Awareness program by Lou Cipher :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Please see: http://www.xml-dev.com/blog/?action=viewtopic&id=141 and a similar discussion on this topic from few weeks back: http://www.xml-dev.com/lurker/message/20060716.142156.01c392a2.en.html On 3/2/04, Mai Dashti <DASHTI@...> wrote: > > > > Dear all ... > > Can someone help me on how to build good IT Security Awareness program > .. > > Thanx > > > May A Dashti > IT Security Officer > Risk Management > Kuwait Real Estate Bank > Tel. (965) 888 999 - Ext. 3144 > > > **************************************************************************** > Disclaimer: > > > > > > This Email and any files transmitted with it are confidential and intended > solely for the use of the individual or entity to whom they are addressed. > If you have received this message in error please delete it and any > files transmitted with it, after you notify the sender immediately. > > KREB accepts no responsibility for any such errors or omissions. The > information,views and comments within this communication are those of the > individual and not necessarily those of KREB. > > > > > Kuwait Real Estate Bank. > **************************************************************************** > From - Mon Jan 1 00:00:00 1965 X-Mozilla-Status: 0000 X-Mozilla-Status2: > 00000000 From: "Bob Rad -- Saqib Ali, CISSP, ISSAP Support http://www.capital-punishment.net ----------- "I fear, if I rebel against my Lord, the retribution of an Awful Day (The Day of Resurrection)" Al-Quran 6:15 -----------
	Re: IT Security Awareness program by Jide Akinyemi :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message I have used materials from Notice Bored (http://www.noticebored.com) and Computer Security Institute (http://www.gocsi.com/ ) in my organisation and I found them useful. However you need to understand your enviroment and tailor your programs towards them. Regards. JA On 3/3/04, Mai Dashti <DASHTI@...> wrote: Dear all ... Can someone help me on how to build good IT Security Awareness program .. Thanx May A Dashti IT Security Officer Risk Management Kuwait Real Estate Bank Tel. (965) 888 999 - Ext. 3144 **************************************************************************** Disclaimer: This Email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this message in error please delete it and any files transmitted with it, after you notify the sender immediately. KREB accepts no responsibility for any such errors or omissions. The information,views and comments within this communication are those of the individual and not necessarily those of KREB. Kuwait Real Estate Bank. **************************************************************************** From - Mon Jan 1 00:00:00 1965 X-Mozilla-Status: 0000 X-Mozilla-Status2: 00000000 From: "Bob Rad
	Re: IT Security Awareness program by Winnie_Liao :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Mai: I would recommend joining the CSI Security Awareness Peer Group. Thanks! Winnie "Mai Dashti" <DASHTI@.... kw> To security-management@... 03/02/2004 11:41 om PM cc Subject IT Security Awareness program Dear all ... Can someone help me on how to build good IT Security Awareness program .. Thanx May A Dashti IT Security Officer Risk Management Kuwait Real Estate Bank Tel. (965) 888 999 - Ext. 3144 **************************************************************************** Disclaimer: This Email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this message in error please delete it and any files transmitted with it, after you notify the sender immediately. KREB accepts no responsibility for any such errors or omissions. The information,views and comments within this communication are those of the individual and not necessarily those of KREB. Kuwait Real Estate Bank. ************************************************************************** From - Mon Jan 1 00:00:00 1965 X-Mozilla-Status: 0000 X-Mozilla-Status2: 00000000 From: "Bob Rad ****** The information contained in this communication is confidential, private, proprietary, or otherwise privileged and is intended only for the use of the addressee. Unauthorized use, disclosure, distribution or copying is strictly prohibited and may be unlawful. If you have received this communication in error, please notify the sender immediately at (312)653-6000 in Illinois; (800)835-8699 in New Mexico; (918)560-3500 in Oklahoma; or (972)766-6900 in Texas. ********
	RE: [lists] IT Security Awareness program by Curt Purdy :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Mai Dashti wrote: > Can someone help me on how to build good IT Security > Awareness program I started the first week in May as the Information Security week with a presentation of the White-Hat Team where I invited all employees to join the team on the first day. I then followed up with 1 email a day highlighting the hot topics of today. I then follow that up with an email at the first of each month with an email on the current hot topic in infosec. It has received a very good response. Curt Purdy CISSP, GSNA, GSEC, CNE, MCSE+I, CCDA Information Security Officer Information Systems Security infosysec.net ------------- If you spend more on coffee than on IT security, you will be hacked. What's more, you deserve to be hacked. -- former White House cybersecurity czar Richard Clarke
	Re: IT Security Awareness program by Руслан Нестеров :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Hi, First of all I recomend you to look at NIST publication. It's got a really good roadmap. 2004/3/3, Mai Dashti <DASHTI@...>: Dear all ... Can someone help me on how to build good IT Security Awareness program .. Thanx May A Dashti IT Security Officer Risk Management Kuwait Real Estate Bank Tel. (965) 888 999 - Ext. 3144 **************************************************************************** Disclaimer: This Email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this message in error please delete it and any files transmitted with it, after you notify the sender immediately. KREB accepts no responsibility for any such errors or omissions. The information,views and comments within this communication are those of the individual and not necessarily those of KREB. Kuwait Real Estate Bank. **************************************************************************** From - Mon Jan 1 00:00:00 1965 X-Mozilla-Status: 0000 X-Mozilla-Status2: 00000000 From: "Bob Rad -- Regards, Ruslan O. Nesterov Security Arhitect http://www.ruscrypto.com
	RE: IT Security Awareness program by robin.skitt :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Contact EasyI http://www.easyi.com/enus/ Regards -----Original Message----- From: Winnie_Liao@... [mailto:Winnie_Liao@...] Sent: 24 July 2006 16:32 To: Mai Dashti Cc: security-management@... Subject: Re: IT Security Awareness program Mai: I would recommend joining the CSI Security Awareness Peer Group. Thanks! Winnie "Mai Dashti" <DASHTI@.... kw> To security-management@... 03/02/2004 11:41 om PM cc Subject IT Security Awareness program Dear all ... Can someone help me on how to build good IT Security Awareness program .. Thanx May A Dashti IT Security Officer Risk Management Kuwait Real Estate Bank Tel. (965) 888 999 - Ext. 3144 ********************************************************************** ** Disclaimer: This Email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this message in error please delete it and any files transmitted with it, after you notify the sender immediately. KREB accepts no responsibility for any such errors or omissions. The information,views and comments within this communication are those of the individual and not necessarily those of KREB. Kuwait Real Estate Bank. ******************************************************************** ** From - Mon Jan 1 00:00:00 1965 X-Mozilla-Status: 0000 X-Mozilla-Status2: 00000000 From: "Bob Rad ****** The information contained in this communication is confidential, private, proprietary, or otherwise privileged and is intended only for the use of the addressee. Unauthorized use, disclosure, distribution or copying is strictly prohibited and may be unlawful. If you have received this communication in error, please notify the sender immediately at (312)653-6000 in Illinois; (800)835-8699 in New Mexico; (918)560-3500 in Oklahoma; or (972)766-6900 in Texas. ********
	Re: IT Security Awareness program by besecure beaware :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Dear Dashti, There are some special trainings where you can learn more about how to build an efficient information security awareness within your organisation, but these are some basic tips: - try to align the awareness program to your company information security policies, - adjust the training to the specific incidents or risks that are most common to your organisation, - use graphs, statistics, films, posters, banners etc - try to make a dynamic but also an ongoing process, - do not forget to measure the efficiency of the whole program, - I would personally start from the top management. Try different consultants and awareness vendors, for sure they can help you with some ideas. My friends at infosecuritylab used to offer three months free awareness training - so you can train your staff for free by a computer supported environment and see, if this is applicable for you. Sometimes it is easier to do face-to-face training. Also I would recommend you to see the video that was prepared and shows the entire process: http://www.infosecuritylab.com/downloads/walkthrough/walkthrough.wmv. One of my students recently managed to get all the information from a bank account in less then 6 hours spent on the phone, by using specific topics of social engineering. It is a long story, but you would not believe, how simple it can be. Bank employees are specially vulnerable to those attacks, therefore try to do some awareness in the most simple areas of information security. Be secure, A. P.S.: Try to measure whatever you do, so you can improve the process in the future! > Dear all ... > > Can someone help me on how to build good IT Security Awareness > program .. > > Thanx > > > May A Dashti > IT Security Officer > Risk Management > Kuwait Real Estate Bank > Tel. (965) 888 999 - Ext. 3144