Lecture Presentation
3a: Creating a Security Aware Organization
Question 1
Are employees information security risks to organizations? If so, why? If not, why not?
Question 2
What factors contribute to making an employee an information security threat actor?
Question 3
How can employee risks be controlled?