you need to substantiate the main idea of your responses by using experiences or referencing a credible information source
Training Awareness (CAT)
Establishing user awareness training is instrumental in defending critical organization intellectual property and information systems. The organization Chief Information Security Officer (CISO) is responsible for providing the leadership for the information security awareness program. The program should focus on and relevant security gaps within the organization and should have a customizable delivery base on the training audience. The training should educate employees and leadership on general awareness of security issues within the organization (Tipton, 2009). According to Smallwood “Organizations must educate their employees to increase awareness of the financial and competitive impact of breaches and to clarify the sensitive documents are the property of the organization”(Smallwood, 2014. Pg. 228). Insider threat is also a serious concern that user awareness training can be used to educate employees and leadership.
Reference:
Smallwood, R. F. (2014). Information Governance. Hoboken, New Jersey: John Wiley & Sons.
Tipton, H. F. (2009). Official (ISC)2 Guide to the CISSP CBK, 2nd Edition. Boca Raton, FL: CRC Press Taylor & Francis Group.