Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Management
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Seeking user training techniques

from [Richard Owen] Network Security [Permanent Link]
Subject: Re: Seeking user training techniques
Date: Tue, 27 Sep 2005 11:50:44 -0500 
The term for best comprehension and retention is "experiential learning", e.g. 
simulation, game playing, role playing, etc.  Short of that, I agree with what 
has been submitted.  Keep it close to actual environment.

Richard M. Owen, PMP, MBA
Adjunct Professor
rmowen@uh.edu
713.743.4161 - Campus Office
713.854.8654 - Cellular Access
C. T. Bauer College of Business
University of Houston
Program for Excellence in Selling
http://www.bauer.uh.edu/pes

  ----- Original Message ----- 
  From: Jose Varghese 
  To: 'Pranav Lal' ; security-management@securityfocus.com 
  Sent: Monday, September 26, 2005 11:29 PM
  Subject: RE: Seeking user training techniques



  Try and make the learning environment as close to user's own desktop
  ** Use screenshots and examples from tools and software that the user
  actually uses

  Try to make the session participative
  **Ask users to write down a complex password and discuss the
  positives/negatives rather than just having a few slides on how to create a
  complex password

  Involve top management 
  ** Have the Head of IT speak for the first 5 minutes before u start the
  session.

  Get a comments/feedback form completed before and after the training
  ** Pre-session - Encourage thinking on security by asking questions like "
  What are the top 3 security risks facing our organization? Post-session- "
  What are the 3 things you learned today"



  Jose Varghese
  Paladion Networks | Mumbai | India
  Ph: +91 22 5591 0513 (Ext: 26) | Fax: +91 22 5591 3580, 
  Mobile: +91 98201 99818| 
  Application Security Intelligence : http://palisade.paladion.net

  -----Original Message-----
  From: Pranav Lal [mailto:pranav.lal@gmail.com] 
  Sent: Saturday, September 24, 2005 9:40 PM
  To: security-management@securityfocus.com
  Subject: Seeking user training techniques

  Hi all,

  I need to give end user training on information security. I usually have a
  powerPoint presentation with text, some posters, a few cartoons if
  applicable etc. I show the occasional movie. Also, I make the audience
  participate by asking questions and keeping the session interactive. The
  users like it but many a time once they are out of the class room they tend
  to slip back into some of their bad  old ways.

  I have been thinking about including some games or simulation exercises in
  the training to re-enforce the material that has been taught. Does any one
  have any ideas on what I could include? Are there any resources that I could
  look up in this regard?  I would like the entire class to participate.
  Note:
  I realize that management has to enforce security policies and that training
  alone cannot lead to a behavior change. I am trying to increase the
  effectiveness of my training.

  Pranav
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Seeking user training techniques, Abdul-Aleem Sayed
Next by Date:  Re: RE: Seeking user training techniques, asutton
Previous by Thread:  RE: Seeking user training techniques, Jose Varghese
Next by Thread:  Re: RE: Seeking user training techniques, asutton
Indexes:  [Date] [Thread] [Top] [All Lists]