Skip to content
Awareity
Awareity

The Pre-Incident Prevention Experts

Primary Navigation Menu
Menu
  • Home
  • About
    • About
    • Awareity Butterfly Effect
    • In The News
    • Contact
    • Support
  • Solutions
    • Information Security Training
      • Information Security Awareness Training
      • Awareness and Accountability Vault (AAV)
    • Prevention and Connecting the Dots Platform
    • First Preventers Framework
    • Prevention and GAP Assessment
    • Threat Assessment Teams
    • Climate Surveys
    • Partners in Prevention
    • Industries
      • K12
      • Higher Education
      • Diocese
      • Healthcare
      • Government
      • Corporate
  • Blog
  • Info Request

Dissemination Trap vs. Implementing/Building and Maintaining

By: Awareity
On: September 10, 2010

 

Dennis McCafferty of CIO Insight recently did a two part overview on Enterprise Security Risks and in part 2 he talked about the hottest security catch phrase of 2010 – Advanced Persistent Threat (APT).

According to the overview, an Advanced Persistent Threat is an insidious attack by a well-funded, state-sponsored intelligence organization.  The overview goes on to describe how APT attackers are more patient than a bored Gen Y hacker or financially motivated crook. They are willing to slowly gather information and data from multiple sources and social media sites and then execute a targeted, social-engineering attack on their terms.

Are bad guys out-thinking the good guys….again?   Yes, but if the good guys are paying attention to lessons learned, they would know the key to defeating the APT risk (and numerous other escalating risks) is not falling into the dissemination trap.

Most organizations fall victim to the dissemination trap because they are simply disseminating policies, procedures, general training, best practices, regulatory requirements and etc. using binders, e-mails, memos, intranets, portals and shared drives.  The article correctly points out that every employee and endpoint is a potential point of entry yet organizations and their leaders continue to believe that dissemination of documents and general training is enough.  The bad guys know this too, which is why APT and thousands of other risks and new attacks target your employees, contractors, vendors, consultants, temps and etc.

Implementation is not dissemination.  Implementation is building environments of security awareness, situational awareness, risk awareness, accountability, compliance, preparedness, legal defensibility, trust and others…and it must be maintained ongoing to keep up with the bad guys.

Are you keeping up or falling into the dissemination trap?

2010-09-10
Previous Post: Whistleblower Line vs. Hero Line
Next Post: If I Knew Then What I Know Now…

READ MORE:

WATCH MORE:

Not seeing the form to request information? Drop us a line and we’ll send you more information!

Recent Blog Posts

Higher Ed Research facts, silos, and different actions

April 10, 2025

Community Research facts, silos, and different actions

April 10, 2025

K12 Research facts, silos, and different actions

April 3, 2025

Bias-based Decisions Can Be Overcome

December 4, 2024

First Preventers Believe…

October 18, 2024

Rick Shaw, Founder & CEO

Click here to learn more about Founder, CEO, and Prevention Specialist, Rick Shaw.

Awareity on Twitter

Tweets by Awareity

Search

Tweets by Awareity

Support

Need more information on
Support for AAV or TIPS?

Click here

What are you looking for?

Connect the Dots With Us!

 | |

Designed using Dispatch Premium. Powered by WordPress.

This site uses cookies to ensure that we give you the best experience on our website. Continuing to use this site means you are agreeing to the use of cookies.Ok