Joe Ferrara | December 16, 2011

A different approach to training end-users, justifying the ROI and defending against cyber security attacks

Founded in 2008, Wombat Security Technologies grew out of cyber security research by the company Co-Founders at Carnegie Mellon University. Wombat provides innovative training and filtering solutions to global enterprise customers. In 2011, the Company has more than doubled its customer base, including the addition of many Fortune 500 companies and large government entities. The Company also released its Security Training Platform in September 2011 and continues to augment the breadth of its training portfolio.

In the following interview, Joe Ferrara, President and CEO of Wombat Security Technologies, discusses 1:1 with Rake Narang, Editor-in-Chief of Info Security Products Guide, a different approach to training end-users, justifying the ROI and defending against cyber security attacks.

Rake Narang, Editor-in-Chief: What are the challenges that companies face these days in implementing effective security awareness trainings? Is there a measureable ROI on such training programs that make them worthy of security budgets?

Joe Ferrara: The biggest challenge that companies face is finding cyber security training solutions that are truly effective and change employee behavior. The traditional training approaches of instructor led classroom training or computer-based video or slideware training are boring and ineffective. In a society of people with short attention spans, audiences “check out” within minutes of being talked at, and little, if any, of the information is retained. Additionally, internally developed security training takes significant resources, time and expense that companies could spend elsewhere.

Chief information security officers (CISO’s) quickly abandon their old training methodologies after learning about a new method . . .

Read the rest of the article at InfoSecurity Products Guide