A call for a new standard in infosec training and awareness

A talk at the “Information Exploitation Conference” at the “Home Office’s Security and Policing Exhibition 2012” calls for a new standard that focuses on training and awareness of users.

Julian Fraser, a director at Data Eliminate Ltd asks why are they unable to translate the term “infosec” from the world of academia and technologist into business and civil society language so that we all start paying appropriate attention to the issues that surround info security, and start acting and learning appropriately. He says that they need to make humans the drivers, because in most cases, it is humans who represent the vulnerability. Fraser points to the negative image of info security, that is largely confined to industry and academia and technically good but beyond the ability of most to understand.His argument is that we need to reverse this picture in order to create a positive demand for info security – to reach out to the social media generation. And the way to do this is via a new info security standard that solely focuses on training and awareness and is delivered in the work environment. More information can be found at Infosecurity web site.