While security training and awareness is often required by compliance requirements, it is vital to the security and future of the organization.
The human element of information security is the most vulnerable.
Security Training
Two sets of training are available: security training and specialized information security training.
The security training covers topics that can be taught across an organization and includes topics such as:
- Physical Security;
- Endpoint Security;
- Social Engineering; and,
- Physical Security.
The specialized information security training covers specialized domains of information security to include:
- Security and Risk Management;
- Asset Security;
- Security Architecture and Engineering;
- Communication and Network Security;
- Identity and Access Management;
- Security Assessment and Testing;
- Security Operations; and,
- Software Development Testing.
Each of these aligns to the domains covered by the exam for the Certified Information Systems Security Professional (CISSP) certification by ISC(2). You may learn more here. This training, however, is not in depth nor a substitute, for the certification training.
If an individual is studying for the Certified Information Systems Security Professional (CISSP), the Certified Information Security Manager (CISM) or Certified Risk and Information Systems Control (CRISC) exam, this training is also available and covers each of the domains relevant to the certification in great detail. This training should be available early spring 2022.
To help reduce the risk of the human in information security, Gilliam Security offers security training. This offering has various topics available either through the Gilliam Security Learning Management System or available for download to be consumed by your organization’s learning management system.
When consumed by your organization’s learning management system, training has the capability to be customized and white-labeled. This feature is not available when using Gilliam Security Learning Management System.
Security Awareness
Awareness is different than training in that its primary focus is to shift a cultural mindset.
While awareness items are not available for download or purchase, Gilliam Security has vCISO services (you may read more here) that will work with your organization to understand the culture of your organization to appropriately design, create and implement awareness campaigns in your organization.