A skilled team of professionals and the right security technologies are undoubtedly important to securing your organization, but your first line of defense against cybercrime is always your employees.

As such, end-users must be taught not only how to recognize social engineering and phishing threats, but also how to treat them, report them and ensure their colleagues aren’t falling foul to them.

At the Security Awareness Summit this August in San Francisco, a video clip was shown that highlights the need to develop holistic security awareness. The segment showed an employee being interviewed ...

Security awareness is one of the most important steps to building a culture of security in an organization. However, finding the right approach to engage employees in security awareness programs is ...

There’s an old adage in cybersecurity that humans are the weakest link in the security chain. That’s increasingly true, as threat actors compete to exploit credulous or careless employees. But it’s ...

As threat actors continue to evolve, so does the tooling that protects a firm's environment. In addition to training, security advisories should be distributed on a regular basis, and security ...

Security awareness training programs are maturing as security teams recognize the need to secure the "human element" of cyber risk. But in the face of more sophisticated attacks using MFA bypass ...

Data security is one of those issues that "takes a village" to address—and HR professionals are part of that village. HR can play an important role in helping to ensure that employees have the ...

Creating and maintaining a comprehensive training program increases the likelihood that employees have the necessary insight to identify potential attacks. A knowledgeable, well-staffed security team ...

Most successful cyberattacks target end users through social engineering. They also exploit systems left vulnerable due to user errors. This is why securing the human element is crucial to managing ...

When it comes to cybersecurity, there’s so much emphasis centered on technology—keeping networks, devices and IT environments safe—that organizations often forget hackers aren’t always targeting ...