Best practices for implementing security awareness training
How to develop a security awareness programme that will actually change behaviour


What if your employees were more informed about security threats, more skeptical about what they receive in email, and less likely to click on malicious links in email without first verifying them?
There are some impactful, quick wins that you and your organisation can realize by implementing security awareness training. This recent in-depth survey of security professionals by Osterman Research shows that the leading security concerns across organisations are all areas in which security awareness training can yield significant benefits.
Here are some suggestions on processes and practices to consider when developing a security awareness training programme that will actually change behaviour and make the organisation less likely to fall prey to a cyberattack.
Get the ITPro daily newsletter
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
ITPro is a global business technology website providing the latest news, analysis, and business insight for IT decision-makers. Whether it's cyber security, cloud computing, IT infrastructure, or business strategy, we aim to equip leaders with the data they need to make informed IT investments.
For regular updates delivered to your inbox and social feeds, be sure to sign up to our daily newsletter and follow on us LinkedIn and Twitter.
-
What is polymorphic malware?
Explainer Polymorphic malware constantly changes its code to avoid detection, making it a top cybersecurity threat that demands advanced, behavior-based defenses
-
Outgoing Kaseya CEO teases "this is just the beginning" for the company
Opinion We spoke to Fred Voccola who remains a key figurehead at the firm as it enters its next chapter...
-
Modern enterprise cybersecurity
whitepaper Cultivating resilience with reduced detection and response times
-
IDC InfoBrief: How CIOs can achieve the promised benefits of sustainability
whitepaper CIOs are facing two conflicting strategic imperatives
-
Take your business further with a dedicated internet connection
whitepaper Achieve internet speed and reliability to match your business ambitions
-
Don’t let a cyber attack hold your business back
whitepaper Protecting the human experience in a digital world
-
Four measures SMBs can take to avoid common security pitfalls
In-depth Security can be challenging for SMBs, but it’s possible to make yourself more resilient to reduce the impact of cyber attacks
-
Don’t just educate: Create cyber-safe behaviour
Whitepaper Designing effective security awareness and training programmes
-
The truth about cyber security training
Whitepaper Stop ticking boxes. Start delivering real change.
-
Employees behaving badly?
Whitepaper Why awareness training matters