Assignment Instructions/ Description
One of the greatest risks to information security within an organization is its employees. The importance of user education, training, and awareness surrounding information security is becoming more prevalent. Organizations of all sizes are enacting and updating their training programs for employees and staff concerning personal accountability in maintaining security posture. Depending on the industry, legal or regulatory compliance may require annual information security training sessions. This is the case for the Department of Health and Human Services (HHS). They have to ensure that 100% of their internal employees and contractors receive annual cybersecurity awareness training. Some organizations break down their training materials by role, whereas others do not. The HHS has included both role-based training and general cybersecurity training meant for all employees, despite their assigned roles.
For this week�s discussion, first select one of the following lessons found within the�HHS Cybersecurity Awareness Training�program. To access this resource, click on�Cybersecurity Awareness Training�under�Training Courses. This will not open a new tab in your browser. On the fifth slide, you will find the various lessons to choose from:
- Lesson 1:
- Lesson 2: Securing Information
- Lesson 3: Social Engineering
- Lesson 4: Breaches and Reporting
Next, complete the lesson. In your initial post, address the following:
- Name and briefly summarize the lesson you completed.
- Recommend an additional deliverable to reinforce this training program and explain why you chose it.
- For example, monthly newsletter, incentive program, etc.
- You�do not�need to create this deliverable; only make a recommendation.
In response to two of your peers, answer the following:
- Would your peers� recommended deliverable appeal to you as an ? Why or why not?
- Do you think any elements were missing from the lesson your peer reviewed? Explain.