Security Awareness Training Blog

Compliance Blog

Compliance news as it relates to cybersecurity, who it affects, and how to stay compliant.

What is a Good Completion Percentage for Security and Compliance Training?

Completion percentages on compliance and security training campaigns have become a popular topic of discussion.
Continue Reading

[INFOGRAPHIC] 10 Tips for Running a Successful Compliance Training Program

Compliance training is often seen as a chore that organizations need to just get through. That said, compliance cannot simply be ignored. A recent report from software firm GlobalScape ...
Continue Reading

[On-Demand Webinar] Getting Compliance on Your Compliance Training

You might think 100% completion rates on any employee training sounds too good to be true. But, getting compliance on your compliance training is possible!
Continue Reading

[New Training] Give Your Employees the Know-How to Have the Tough Conversations with New Compliance Plus Training

We’re thrilled to announce a brand new microlearning, TV-like production quality series of compliance content now available in the Compliance Plus library.
Continue Reading

Striving for 100% Completion: Getting Compliance on Your Compliance Training

At the last few conferences I have attended and spoken at, including our own KB4-CON 2022, I noticed a question that many people have struggled with for years rearing its ugly head again.
Continue Reading

Don't Just Have a Compliance Season, Have a Culture of Compliance

“We want compliance training to be impactful like your security awareness training.”
Continue Reading

Engaging Your Remote Workforce: Go Beyond Compliance with Training

Even after the pandemic ends, many employees say they want to stay home and continue to work remotely. A recent study by the Mckinsey & Company that looked at over 800 jobs in nine ...
Continue Reading

Turning Compliance Into Tangible Security

Compliance and security are supposedly about risk management. Both seek to reduce the chances that threats and their risks will be able to successfully exploit a target. But they are ...
Continue Reading

SolarWinds Hit With Class-Action Lawsuit Following Orion Breach

SolarWinds and some of its executives have been accused of lying to shareholders about its security. In a class-action lawsuit filed by shareholders Solarwinds, outgoing CEO Keven ...
Continue Reading

[Heads Up] Was SolarWinds Really A Daisy Supply Chain Attack?

The NYT just reported the next revelation regarding the SolarWinds hack.  The Russian FSB may have piggybacked on a tool developed by JetBrains, which is based in the Czech Republic.
Continue Reading

Security Awareness Training Compliance and .GOV

A customer sent me the following observation which is something I have been trying to get across for the last 10 years: "I found this interesting – and potentially disconcerting. This ...
Continue Reading

How To Get And Stay Compliant With The New California Consumer Privacy Act (CCPA):

California's new AB 375 privacy law is not as bad as GDPR, but the details are still in flux. CCPA does not have some of GDPR's most scary requirements like the very short 72-hour window ...
Continue Reading

Six Security Questions You Should Keep in Mind for Third Parties

Organizations are beginning to understand the consequences of a data breach or a phishing attack and the negative impact they can really have. But what are the security risks for third ...
Continue Reading

Confront Apprehensive Compliance Before Disaster Strikes

This blog is co-written by Aimee Laycock and Joanna Huisman When it comes to fostering a more secure environment it’s not a question of wanting to…it’s more like YOU HAVE TO. ...
Continue Reading

December Content Update: Includes New Versions of Email Exposure Check Pro and Phishing Security Test Tools

Here are a few important updates to share with you from the month of December. 
Continue Reading

[LEGAL ALERT] What You May Have Overlooked in the Run Up to CCPA Compliance

LAW.COM had a very good reminder that you really need to keep in mind. Here is an extract: "With just days to go before the California Consumer Privacy Act (CCPA) compliance date, some ...
Continue Reading

99 Percent Of All Misconfigurations In The Public Cloud Go Unreported

Charlie Osborne at ZDNet wrote: "Today's data breaches often seem to be caused not just by malware infections or external threat actors, but human error, insiders with an ax to grind, and ...
Continue Reading

Financial Phishing Campaigns on the Rise

More than 1900 new potential bank phishing sites were registered in the first half of 2019, according to researchers at NormShield. Based on the increase in new suspicious domains ...
Continue Reading

British Airways Hit With Record $229 Million GDPR Fine Following 2018 Data Breach

U.K.-based airline British Airways (BA) is facing a record fine of £183 million ($229 million) after suffering a cyberattack in September last year. The U.K. Information Commissioner’s ...
Continue Reading

Nearly Half of US Orgs Not Ready for California Consumer Privacy Act Deadline

InfoSec Mag observed something a bit worrisome. "In advance of the California Consumer Privacy Act (CCPA) going into effect January 1, 2020, researchers analyzed how prepared US ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews