Understanding Information Security Attacks And Security Awareness

1141 WordsAug 11, 20145 Pages
Understanding Information Security Attacks and Security Awareness in an Organization Roshan Dhakal 11407004 Email:droshan_2005@yahoo.com (Doctor of Information Technology, Charles Sturt University) Table of Contents Introduction 3 Importance 4 Future research 5 Conclusion 5 References 6 Abstract In today’s information technology age, many organizations are facing the security attacks. These kinds of attacks occur to two different forms which can be classified as external attacks and internal attacks. Organizations can mitigate the external attacks of implementing firewall, anti-virus and other defense perimeters but internal attacks are even hard to identify. Internal attacks take place in terms of employees negligence in their work performance, theft and stealing the organizational assets and selling to competitors, script kiddies, eaves dropping and spying other employees, etc. Even latest technologies are not being able to identify and detect those types of attacks. Therefore organizations have to implement security education, awareness and training program to educate the internal employees to minimize the risk of insider attacks. This paper further discuss about how security education, training and awareness program helps to mitigate the insider attacks and why it is important to organization. Keywords:- Security Education, Training and Awareness Program, Internal and
Open Document