IT Security Awareness Programs
By John G. Laskey
Throughout my time in both the government and commercial sectors, security awareness has meant different things to different security professionals. I have heard (and, yes, been involved in) tedious arguments about the ‘important’ differences between security “awareness” and security “training”. To me this is just semantics: by awareness, I mean the need to make security understood. Moreover, since security often changes, this means awareness must be continuously updated.