Security Management Programs and Oversight: Reporting and Monitoring Flashcards

1
Q

What is reporting and monitoring?

A

Your organization should embrace the importance of robust monitoring and reporting when it comes to security-awareness training initiatives in your organization. Monitoring and reporting should be done initially with any training activities, but you should also plan for recurring monitoring and reporting to help ensure the ongoing effectiveness of the program.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
1
Q

What can Monitoring and reporting consist of?

A

Monitoring and reporting can consist of some or all of these approaches:

Pre-training baseline assessment.

Training-implementation monitoring.

Post-training assessments.

Ongoing phishing simulations.

Continuous monitoring.

Security incident reporting.

User feedback.

Metrics and key performance indicators (KPIs).

Regular reviews.

Remedial training.

Incentives and recognition.

Adaption and updates.

Communication and feedback loops.

Executive reporting

How well did you know this?
1
Not at all
2
3
4
5
Perfectly