Questions? Call (800) 585-4888 or email security@compliancepoint.com   

Home      About Us      Resource Center      Partners      Contact Us       Site Map    

Our Security Awareness Training program is designed to educate your employees on general information security principles. Since this is a Web-based training program, the courses are available at any time to anyone with an Internet connection.

These are the standard Security Awareness training courses available online.

• Introduction To Information Security - Provides an introduction to concepts including information asset classification, information security policy, ISO17799 security framework, cyber crime, and the layered security approach


• Social Engineering And Compromise - Introduces the dangers of social engineering and compromise used in malicious attacks
  againstinformation assets in an enterprise


• Electronic Privacy In The Corporate Environment - Deals with the issues and concepts of electronic privacy including applicable laws and regulations


• Access Control (Identification, Authentication & Accountability) - Focuses on the best practice methods for applying access control and on the different methods of access control available such as biometrics, tokens, single sign-on, and passwords.


• Physical Security Of Information Assets - Covers safeguarding corporation information assets and deals with issues including laptop security and access control.


• Malicious Code (Worms, Trojans & Viruses) - Explains the different types of malicious code, methods of delivery, the potential impact to information assets, and the preventative controls


• Disclosure Of Information - Provides insight on other related security concepts such as accidental disclosure, intentional disclosure, reporting disclosure events, labeling, common types of classifications, and the importance of information classification.


• Information Asset Disposal - A high level overview of the various types of information assets, the proper methods of disposal, and the implications of improper disposal of information assets in terms of disclosure and regulatory compliance.


• Incident Response Teams - Explains how corporate incident response teams function, their structure, their authority, sphere of influence and the responsibilities.


• Regulatory Compliance - A high level introduction to the more common regulatory laws and how they can affect an information security policy and program, and the implications of non compliance.