Not yet. In the United States, laws requiring security and privacy awareness training apply to:
In addition, as of January 2007, 37 US states and the District of Columbia have passed laws that require customer notification of breaches involving customers' personal information.
An awareness program helps prevent loss. When people know what to look for and what to do, problems are noticed and acted on earlier.
To avoid or defend against charges of negligence after a data breach or other incident, organizations must:
Awareness programs can accomplish these goals.
Native Intelligence has an eleven-year record of success in increasing workforce security awareness for our clients. We offer a full range of products and services, from posters and tip sheets to complete security awareness and motivational programs with performance metrics.
With good security behaviors habitual throughout an organization, the number and severity of security incidents decline along with the risk of lawsuits or legal action. In turn, productivity increases along with a public confidence in your organization's ability to protect sensitive customer and business data: safe harbors provide a natural competitive advantage.
Our awareness and training professionals can work with you to make your workforce security savvy.
Prevention Is Better Than Cure (a poem)
The 4th Edition of the Computer Security Handbook was published in April 2002. Chapter 29 deals with Security Awareness. Our founder and Chief Inspiration Officer (CIO) is the principal author of Chapter 29.
K Rudolph, CISSP
Louis Numkin and Gale Warshawsky
The 5th edition (with an updated chapter) will be published in 2007.