Security Awareness
Security awareness is knowledge and attitude members of an organization possess regarding protection of the physical and information assets of that organization. Many organizations require formal security awareness training for all employees when they take up sensitive assignments and, in some cases, periodically thereafter.
Topics covered in security awareness training include:
The nature of sensitive material and physical assets they may come in contact with, such as trade secrets, privacy concerns and government classified information
Employee and contractor responsibilities in handling sensitive information, including review of employee nondisclosure agreements
Requirements for proper handling of sensitive material in physical form, including marking, transmission, storage and destruction
Proper methods for protecting sensitive information on computer systems, including password policy and use of two-factor authentication
Other computer security concerns, including malware, phishing, social engineering, etc.
Workplace security, including building access, wearing of security badges, reporting of incidents, forbidden articles, etc.
Consequences of failure to properly protect information, including potential loss of employment, economic consequences to the firm, damage to individuals whose private records are divulged, and possible civil and criminal penalties
Being Security Aware means you understand that there is the potential for some people to deliberately or accidentally steal, damage, or misuse the data that is stored within our computer systems and through out our organization. Therefore, it would be prudent to support the assets of our institution (information, physical, and personal) by trying to stop that from happening.
Article source: InfoSecurityLab
Information security awareness training
Article Source: ArticlesBase.com - Security Awareness