One Article Review
| Source |  NoticeBored |
|---|---|
| Identifiant | 437513 |
| Date de publication | 2017-11-22 16:30:57 (vue: 2017-11-22 16:30:57) |
| Titre | NBlog November 22 - A to Z of social engineering controls |
| Texte |  I didn't quite finish the A-to-Z on social engineering methods yesterday as planned but that's OK, it's coming along nicely and we're still on track. I found myself dipping back into the A-to-Z on scams, con-tricks and frauds for inspiration or to make little changes, and moving forward to sketch rough notes on the third and final part of our hot new security awareness trilogy: an A-to-Z on the controls and countermeasures against social engineering. Writing that is my main task for today, and all three pieces are now progressing in parallel as a coherent suite.It's no blockbuster but I have a good feeling about this, and encouraging feedback from readers who took me up on my offer of a free copy of the first part.Along the way, a distinctive new style and format has evolved for the A-to-Zs, using big red drop caps to emphasize the first item under each letter of the alphabet. I've created and saved a Word template to make it easier and quicker to write A-to-Zs in future - a handy tip, that, for those of you who are singing along at home, writing your own awareness and training content.I'd like to include some graphics and examples to illustrate them and lighten them up a bit, but with the deadline fast approaching that may have to wait until they are next updated. Getting the entire awareness module across the line by December 1st comes first, which limits the amount of tweaking time I can afford - arguably a good thing as I find this topic fascinating, and I could easily prepare much more than is strictly necessary for awareness purposes. Aside from that, the release of an updated OWASP top 10 list of application security controls prompted me to update our information security glossary with a couple of new definitions, and a radio NZ program about a book fair in Edinburgh (!) prompted me to explain improv sessions as a creative suggestion for the train-the-trainer guide for the social engineering module. |
| Envoyé | Oui |
| Condensat | aside i 1st about access across afford against all along alphabet amount another application approaching are arguably awareness back become becoming big bit blockbuster bones book breaking but can caps case changes cloud coherent comes coming con concealed concerns content controls copy could countermeasures couple created creating creative credentials deadline december definitions depends didn dipping distinctive drop each easier easily edinburgh emphasize encouraging engineering enough entertainment entire evolved evolves examples explain faceted fair fascinating fast feedback feeling final find finish first format forward found frauds free from future getting github glossary good governance graphics guide hackers hacking handled handy has have here hints home hot how illustrate improv incident include info information infosec initial inspiration issue item itself: letter lighten like limits line list little looks losing main make may meat merit methods millions module more moving much multi myself nblog necessary new news next nicely noncompliance notes november now offer other owasp own parallel part personal pertinent pictures pieces planned point possibly potential prepare privacy program progressing prompted published purposes quicker quite radio raise rather readers records red release relevant reports rough saved scams security services sessions several singing sketch social some sony speak special steal storage story strictly study style suggestion suite task template than that them them up thing third those three time tip today took top topic topics track train trainer training tricks trilogy: turn tweaking uber under until update updated user using vague wait way which who word words write writing yesterday yet your |
| Tags | |
| Stories | Uber |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.