Академический Документы
Профессиональный Документы
Культура Документы
Security Awareness
Solution Brief
End User Social Engineering Risk
“.. 70 percent of those asked said they would reveal their
computer passwords for a …
BAR OF CHOCOLAT... ”
Schrage, Michael. 2005 Survey
Security Logo
Security Newsletter
Built and design full newsletter on security with:
1. Hard copy monthly newsletter
2. Hard copy special editions
3. Electronic “Word” newsletters
4. Electronic “push” E-Mail format.
5. Executive Review Newsletter
6. Others as necessary.
Security Alerts
As security events deem, we will forward to you electronic Security Alerts and/or quick
security news updates. This will include CERTs such as SirCam, Code Red and other
significant events.
Security Books
As part of the awareness program we will supply copies of books written by Winn
Schwartau.
Gaming
Develop and run a series of games, like Jeopardy, which is a combination of trivia and
security knowledge. Teams of up to three each compete for prizes
provided by. They can be arranged alongside Security Awareness
Days Examples include:
1. Computer Response Disaster Training
2. On line “Trivia Fever”
3. Jeopardy, Password Security, etc.
4. Scavenger Hunt for security information (from Intranet). We put a list of say 50
security related items to be found on the Internet. Staff has to come back with
specific information that can only be found on certain places. We need to create a
streamlined judging process.
5. Security Cryptoquotes (these can be added to the newsletter or put on the Intranet
site to encourage visiting it.
6. Word Search
Optional Items
These are some additional optional items that you may want to consider once the SA
program gets put together and the process is streamlined.
1. Install a video server to load security relevant videos on the Intranet. We can
convert existing videos (with copyright holder’s approval) into digital format.
Also good if you videotape presentations. Consider available network
bandwidth.
2. Writing and producing a security awareness video or animation for use in video
and on-line training. Tends to be very expensive.
3. Develop an employee Security Awareness Handbook for use with new
employee indoctrination and Human Resources. Can range from the simple to
the complex. Would be done in hardcopy and electronic formats for multiple
uses.
4. Develop internal Forensics and investigations capabilities.
5. Develop CIRT/CERT Incident Response procedures.
6. Hacking and Anti-Hacking Training
7. Additional training seminars and special classes throughout the year on topics to
be decided, such as policy development, HR interviewing techniques with
security as a focus, in-depth technical training on various platforms, Forensics,
Contacting Us
Headquartered in Manama, Kingdom of Bahrain is both privately funded and co-owned
by its employees. Other office locations are Europe, GCC and Asia.
• Web: http://www.esgulf.com
• Email: info@esgulf.com
• Support: support@esgulf.com
eSgulf-Head Office
2nd Floor, Yateem Centre,
P O Box 10606,
Manama, Kingdom of Bahrain
+973-17223550 +973-17225338
eSgulf-Greece
19 Damaskinou Street Nea Smyrni
17123 Athens
Greece
eSgulf-Cyprus
PO Box 58115
3731 Limassol
Cyprus
Pakistan
eSgulf/Instec Digital
904, Fortune Centre, 45A
Block 6, PECHS,
Karachi, Pakistan