Tools of awareness and training on information security in the context of digitalization
DOI: 10.31673/2412-9070.2021.041416
DOI:
https://doi.org/10.31673/2412-9070.2021.041416Abstract
The article examines modern software tools for awareness and training personnel in the field of information security and identifies the main trends in their development. It is noted that the best ways to prevent information security incidents are to form personnel understanding the basic problems of information security and skills to overcome them, as well as the formation of safe behavior of each employee in the workplace. The study was based on the publication of the Forrester research company on the market of software solutions for Security Awareness and Training (SA&T). Forrester experts identified the best world-class SA&T software vendors in the following categories: leaders, strong performers, contenders and challengers, and analyzed their software products in detail. It was found that the vast majority of companies mentioned in the study are Western. Based on the SA&T software market research, the article identifies the following trends in this area: the focus of these programs on the formation of safety behavior and culture of personnel, not just knowledge and skills; individual approach to training for each company; quality content and a variety of methods, including gamification, microlearning and virtual reality; practical direction of training, which is carried out in conditions as close as possible to real; measuring the quality of training by further tracking changes in personnel behavior in the workplace; use of training and awareness tools for personnel as an integral part of the effective implementation of the corporate information security program.
Keywords: information security of the enterprise; information security awareness and training; software tools for information security awareness and training.
References
1. 15 Alarming Cyber Security Facts and Stats. 2020 [Електронний ресурс]. URL: https://www.cybintsolutions.com/cyber-securityfacts-stats/ (дата звернення: 13.12.2021).
2. Budge Jinan. The Days When SA&T Operated Solely To Train People About Security Are Vanishing [Електронний ресурс]. URL: https://www.forrester.com/blogs/the-days-whensat-operated-solely-to-train-people-about-securityare-vanishing/ (дата звернення: 13.12.2020).
3. The Forrester Wave™: Security Awareness And Training Solutions, Q1 2020 [Електронний ресурс]. URL: http://i.crn.com/ (дата звернення: 13.12.2021).
4. Webroot® Security Awareness Training [Електронний ресурс]. URL: https://manufacturerstores.techdata.com/docs/default-source/carbonite/webroot_security_awareness_training_smb.pdf?sfvrsn=2 (дата звернення: 13.12.2021).
