In order to prevent costly security and risk problems made by human being, this service will build the appropriate user security awareness program, which will fit your risk appetite. To reach and sensitise all people in your organisation, the program can be build for regular users but also for VIP or senior manager.
NIST (2003), The success foundation of such program is based of the following:
1) Developing IT security policy that reflects business needs tempered by known risks;
2) Informing users of their IT security responsibilities, as documented in agency security policy and procedures; and
3) Establishing processes for monitoring and reviewing the program.
