Building An Information Security Awareness Program from Scratch

Presented at DerbyCon 3.0 All in the Family (2013), Sept. 27, 2013, noon (50 minutes).

Most organization’s Security Awareness Programs suck: they involved ‘canned’ video presentations or someone is HR explaining computer use policies. Others are extremely expensive and beyond the reach of the budgets of smaller organizations. This talk will show you how to build a Security Awareness Program from scratch for little or no money, and how to engage your users so that they get the most out of the program.


Presenters:

  • Bill Gardner
    Bill Gardner (oncee) is an associate professor at Marshall University where he teaches in the Digital Forensics and Information Assurance program. He is also the co-founder and an organizer of Hack3rcon based in Charleston, WV and is the president of the Appalachian Institute of Digital Evidence (AIDE) based in Huntington, WV.
  • Valerie Thomas
    Valerie Thomas (hacktress09) is a Senior Information Security Consultant for Securicon LLC that specializes in social engineering and physical penetration testing. After obtaining her bachelor’s degree in Electronic Engineering, Valerie led information security assessments for the Defense Information Systems Agency (DISA) before joining private industry. Throughout her career, Valerie has conducted penetration tests, vulnerability assessments, compliance audits, and technical security training for executives, developers, and other security professionals. Additionally, Valerie has presented at multiple BSides events, Derbycon, Blackhat, Defcon, HackMiami, and several other conferences.

Links:

Similar Presentations: