The PhishMe blog on building employee awareness to social engineering tactics was inspiring so I finally decided to put up a paper on this site regarding similar subject matter.
Combating the Insider Security Threat – A Security Awareness Exercise
This paper has been developed to address the human factor of security and the apparent weaknesses within organizations due to employees’ lack of security awareness. The purpose is to provide organizations a simple solution for increasing security awareness and combating other malicious insider security threats through a series of social engineering exercises. The document is available by clicking the name above or by accessing the “Papers” section of the site.
PhishMe Blog Entry:
http://blog.phishme.com/2007/09/time-to-phish-your-customers/
jtbevis
This is crazy talk! I thought every security problem can be solved by buying a product that’s managed by EPO. 😉