Security Awareness Training Blog

Compliance Blog

Compliance news as it relates to cybersecurity, who it affects, and how to stay compliant.

[Live Demo] Customizing Your Compliance Training to Increase Effectiveness

Linking compliance training to specific outcomes is hard. Compliance training has a reputation for being challenging for organizations to offer, difficult to do right and employees are ...
Continue Reading

Three Key Takeaways From the Newly Adopted EU-US Data Privacy Framework You Need To Know

On July 10th, the EU Commission adopted anadequacy decision for the proposed EU-U.S. Data Privacy Framework. This is exciting news for organizations, as many have been stuck in privacy ...
Continue Reading

Unleashing the Power of Incident Reporting: Strengthening Security and Compliance

Whether it is reporting a phishing email or something that might be illegal that a coworker is doing, your employees should be a strong last line of defense for security and compliance.
Continue Reading

Tips from Customer Panel on Combining Security Awareness and Compliance Culture Training

At KB4-CON 2023, we had a customer panel that I hosted discussing the connection between security and compliance training content when trying to change organizational security culture.
Continue Reading

Automate Reporting for Security Awareness Training Events and Suspicious Email Remediation Management with Cortex XSOAR and KnowBe4

Security teams face unique challenges in today’s rapidly-changing landscape of phishing, malware, and other social engineering and cybersecurity threats. Collaboration across disparate ...
Continue Reading

[Live Demo] Customizing Your Compliance Training to Increase Effectiveness

Linking compliance training to specific outcomes is hard. Compliance training has a reputation for being challenging for organizations to offer, difficult to do right and employees are ...
Continue Reading

Bill 96 in Québec Brings Up Important Point About Training in Native Language Everywhere

A new law in Québec, Canada, that goes into effect this June will require all policies and training materials assigned to employees within the province be provided in French.
Continue Reading

What Is a Good Survey Rating for Security and Compliance Training?

We received great feedback from many of you after sharing data about completion percentages last month so much that we thought, “What other things can we share from our vast amount of ...
Continue Reading

What is a Good Completion Percentage for Security and Compliance Training?

Completion percentages on compliance and security training campaigns have become a popular topic of discussion.
Continue Reading

[INFOGRAPHIC] 10 Tips for Running a Successful Compliance Training Program

Compliance training is often seen as a chore that organizations need to just get through. That said, compliance cannot simply be ignored. A recent report from software firm GlobalScape ...
Continue Reading

[On-Demand Webinar] Getting Compliance on Your Compliance Training

You might think 100% completion rates on any employee training sounds too good to be true. But, getting compliance on your compliance training is possible!
Continue Reading

[New Training] Give Your Employees the Know-How to Have the Tough Conversations with New Compliance Plus Training

We’re thrilled to announce a brand new microlearning, TV-like production quality series of compliance content now available in the Compliance Plus library.
Continue Reading

Striving for 100% Completion: Getting Compliance on Your Compliance Training

At the last few conferences I have attended and spoken at, including our own KB4-CON 2022, I noticed a question that many people have struggled with for years rearing its ugly head again.
Continue Reading

Don't Just Have a Compliance Season, Have a Culture of Compliance

“We want compliance training to be impactful like your security awareness training.”
Continue Reading

Engaging Your Remote Workforce: Go Beyond Compliance with Training

Even after the pandemic ends, many employees say they want to stay home and continue to work remotely. A recent study by the Mckinsey & Company that looked at over 800 jobs in nine ...
Continue Reading

Turning Compliance Into Tangible Security

Compliance and security are supposedly about risk management. Both seek to reduce the chances that threats and their risks will be able to successfully exploit a target. But they are ...
Continue Reading

SolarWinds Hit With Class-Action Lawsuit Following Orion Breach

SolarWinds and some of its executives have been accused of lying to shareholders about its security. In a class-action lawsuit filed by shareholders Solarwinds, outgoing CEO Keven ...
Continue Reading

[Heads Up] Was SolarWinds Really A Daisy Supply Chain Attack?

The NYT just reported the next revelation regarding the SolarWinds hack. The Russian FSB may have piggybacked on a tool developed by JetBrains, which is based in the Czech Republic.
Continue Reading

Security Awareness Training Compliance and .GOV

A customer sent me the following observation which is something I have been trying to get across for the last 10 years: "I found this interesting – and potentially disconcerting. This ...
Continue Reading

How To Get And Stay Compliant With The New California Consumer Privacy Act (CCPA):

California's new AB 375 privacy law is not as bad as GDPR, but the details are still in flux. CCPA does not have some of GDPR's most scary requirements like the very short 72-hour window ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews