January 2011

End users can't be TRAINED

Published on 31 January, 2011 - 00:35 by Terranova Courses, PCI DSS, Section 12.6, Planning
I believe all security awareness trainers understand that most end users can’t really be “trained” in how to protect their systems and their corporate networks. However, if all systems are security protected and configured, security awareness training can assist in helping end users understand the security risks and know what mistakes to avoid making. PCI DSS is primarily focused on technological solutions and most organizations have implemented anti-virus, firewalls, IPS, monitoring and...