Northeast Ohio Information Security Forum

Repetition is a proven successful way to bridge the gap of compliance, teaching our users real life skills, and helping secure the infrastructure that we are responsible for protecting. This is best implemented with a comprehensive hands-on security phishing and awareness rewards program. A full program design will provide a maturity that the CBTs have not. While they are a good value add and can be used to reinforce the real life scenarios, relying on them as a primary means of security awareness training will not provide the value or insight to the first line of defense. By consistently reinforcing the CBTs with a custom built awareness program you increase the end user’s skills and boost the organization’s immunity to phishing and social engineering threat factors.

We all know that the end user is the weakest link. With all the talk around how broken user education is. I’ll be going over the user education by phishing and rewards program I put into place in an enterprise environment.

Tracked Metrics:

I’ll share what I did, learned, screwed up, and would change.

BIO:

Amanda Berlin is currently a Network Security Engineer at Hurricane Labs. She has been working in the IT industry for around 10 years and has worked in both public and private sector as well as spending a decent time in healthcare. She managed the internal phishing campaign at a medium size healthcare facility to promote user education about phishing and hacking through an awards based reporting program. She is a lead organizer for CircleCityCon, volunteers at many other conferences, and enjoys writing and teaching others. Amanda lives at home with her three boys and “Rabbit” the cat.

“Moving Over to the Dark Side:  What Do You Need to Move From Technical Over Into Management”
by Kenyon Mau

BIO:
Kenyon Mau is a successful human resources expert with over twenty years of experience as well as a passion for positively influencing an organization’s bottom line through the recruitment, retention, and development of talent.  He possesses a zest for innovation and creativity and has demonstrated these attributes in a variety of organizations of varying sizes, cultures, and needs.

Kenyon is currently Manager for Recruiting and Human Resources for SecureState; a management consulting firm specializing in information security.

Previously, Kenyon owned his own human resources consulting firm for five years, was a human resources manager for a local consumer product manufacturing company.  He also headed up information technology staffing for a local Fortune 200 employer where he staffed half of a 1,000-person Information Technology department in positions ranging from interns up to executives.  Kenyon has team leader position with an international staffing firm; he has been a region- leading recruiter for an international I.T. consulting firm as well as being an hr generalist for a Midwest-based oil company.