IT Security Compliance regulations and guidelines (GLBA, NCUA, FFIEC, HIPAA, etc.) require an organization to create an Information Security Program designed to protect confidential information, including Non-Public Personal Information (NPPI). Failure of employees to implement security practices is a major vulnerability to an Information Security Program. This is why the guidelines require organizations to train employees on security policies and procedures.

Numerous organizations throughout the world have relied on TraceSecurity’s experts to provide security training to their employees. While this training includes IT Security Best Practices, it is also customizable to include the organization’s specific IT Security policies and procedures and results of recently performed assessments or social engineering engagements.

Typical security training topics include:

Identity management and password safety
Recognizing and responding to social engineering attacks
Private information storage/disposal
Wireless security protocols
Internet and web security
Home/family security
Portable device/media security
Antivirus/anti-phishing/anti-malware
Risk Assessment Best Practices
Social Network Dangers
BCP/DRP

The length of the training engagement depends on the required content. Courses can be designed for individuals, groups or the entire organization. If desired, TraceSecurity will work with the organization to facilitate training to the organization’s customers, members or other third parties. The training can be delivered on-site, at a training facility, or remotely through online presentations.

Because an organization is continuously changing with new policies and new employees, the training process can become time consuming and costly. TraceSecurity has developed TraceTrain, a module of TraceSecurity Compliance Manager that facilitates online training delivery and testing. TraceTrain is sold as a stand-alone solution or as a software complement to Security Training. To learn more about TraceTrain click here.