Who Should Be Able to Opt Out of Security Awareness training – and How

By Ian Palmer

Brad Johnson is adamant that no one in an organization should be exempt from security awareness training. Not the CEO. Not the chief security officer. Nobody. Johnson, the vice president of SystemExperts, says that making exceptions on the security awareness training front would only open companies up to a host of problems that otherwise might have been avoided. “Who should be able to opt out of security awareness training? The simple answer is nobody,” says Johnson. “Yes, I said nobody. What about the chief security officer? Nope. What about the director of IT management? Nope. And so on, and so on. Let’s ask this same kind of question in a different context. What NFL player should be able to opt out of practice? Should an NBA player be able to opt out of warm-ups?”

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *