October is National Cyber Security Awareness Month. I am hoping you will join me in a national program to kill cyber-security awareness training programs. I don’t know who came up with the concept of “security awareness training”, but it has reached the end of its utility and should be replaced with something else. Is all we want is for users to be “aware” of security issues? Don’t we want them to be educated enough to be active parts of the solutions?
I looked into the history of “security awareness training”. Did we inherit it from the pioneers?
Leave a reply
