Episode 217: User Guidance and Training (Part 2) (Domain 5)
Failed to add items
Add to Cart failed.
Add to Wish List failed.
Remove from wishlist failed.
Adding to library failed
Follow podcast failed
Unfollow podcast failed
Episode 217: User Guidance and Training (Part 2) (Domain 5)
-
Narrated by:
-
By:
About this listen
Beyond basic policy understanding, users need targeted training in key risk areas that attackers frequently exploit—especially insiders, passwords, and privileged access. In this episode, we focus on insider threat awareness, teaching employees how to recognize red flags like excessive access, unusual behavior, or data hoarding by peers. We also cover password management best practices: creating complex passphrases, using password managers, and understanding why reuse is dangerous. Many incidents begin with a weak or compromised password—making training a top defense. Finally, we emphasize tailoring training for different roles, with higher emphasis on privileged users who have elevated access to sensitive systems and data. The more your users understand the risks tied to their behavior, the better positioned they are to act as allies in defense.