Timeline for Should corporate security training be tailored based on a users' job role?
Current License: CC BY-SA 4.0
3 events
when toggle format | what | by | license | comment | |
---|---|---|---|---|---|
Feb 19, 2019 at 11:36 | comment | added | schroeder♦ | Important to note that security training is not ISO 27k specific and it is completely reasonable to have training even if the org is not even considering ISO 27k. A well-defined ISMS should be designed to address the org's risks, which means that the more generic approach for training design is to train based on risk rather than policy. And that's true both for procedural training as well for awareness training. | |
Feb 19, 2019 at 11:33 | history | edited | schroeder♦ | CC BY-SA 4.0 |
grammar
|
Feb 19, 2019 at 7:05 | history | answered | Vikas | CC BY-SA 4.0 |