HumanSAMM Methodologies
- Micro-Training (high frequency short training)
- Mass Customization (Unique programs for each user)
- Need Based Human Intervention
- Entertaining & Short Content
- High frequency attack emulations (Phishing & Spear Phishing)
- Key Metrics Defined
- Defined JIT (Just-In-Time) Training moments
Problems with traditional Security Awareness Training & Education
- Binge Training is not effective
- Poor metrics & even poorer understanding of individual risk
- Programs are one size fits all
- Lack of Human Intervention
- Lack of Just-in-time education
- Boring Content
- Not Enough Spear Phishing