Barney's Blog

Blog archive

Which Is Stronger, Security Tools or Training?

Redmond columnist Don Jones poses a lot of interesting questions. The great thing is he usually has the perfect answer.

The latest is whether all these great security tools are making us lax and over dependent on technology. In fact, how often does your shop conduct security training?  See, you may already be lax.

Shops that are overconfident in their security apparatus may be less secure in a way than if they had nothing to protect them. That's because without training, your end users are apt to do all kinds of dumb things -- the kind of things social engineering hackers love to talk them into.

Do you do enough security training? You tell me at

Posted by Doug Barney on 08/20/2012 at 1:19 PM

comments powered by Disqus

Reader Comments:

Mon, Aug 20, 2012 EVVJSK

Layered approach including both would be recommended. Our training department just did an annual training in conjunction with Security Department. Wasn't bad, but by necessity limited to what the user can handle and covered a variety of topics. Best training would likely be a simulator where users were allowed to do "user things" (i.e. see a possible SPAM email) and then have the computer "melt down" if they opened it and click on a link they shouldn't have. Need to have the tools there to protect some from themselves. Unfortunately hard for tools to protect from a zero day if one should get out early. That is where SOME training helps.

Add Your Comment Now:

Your Name:(optional)
Your Email:(optional)
Your Location:(optional)
Please type the letters/numbers you see above

Redmond Tech Watch

Sign up for our newsletter.

I agree to this site's Privacy Policy.