Description: * _"There's no patch for human stupidity."_ * _"Training users is a waste of time and resources."_ Comments like these are not uncommon in the information security community. To that I say, "Seriously guys, it doesn't have to be this hard." Most of us would agree that our users are our weakest link - but the fact is, that's our fault, not theirs. But we can fix it together! In this talk, I'll go through the top ten reasons I've seen security education programs fail, and what you can do to avoid those pitfalls. I'm also happy to answer any questions you have about building your own security education program or upgrading your existing one.
Kris is a founder of the Cleveland-area infosec group CleveSec, as well as a board member for the Northeast Ohio Information Security Forum and an organizer for OWASP Cleveland. He does application security and security education for a software vendor in the Cleveland area where he worked to create and run its first-ever application security program.
For More Information Please Visit: - http://www.convergeconference.org/main/
http://www.irongeek.com/i.php?page=videos/converge2015/mainlist
Tags:
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.