Uncertain Times — Infosec's here to help. Learn about remote testing and other COVID-19 resources.

Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every month!

Topic
Type
View Results
Filter Results
Whitepaper & report

2020 IT & Security Talent Pipeline Study

Professional development, Best practices
Learn how successful hiring managers are filling open roles in Infosec’s 2020 IT & security talent pipeline study.
Download
Webinar & video

Endpoint security in a post-pandemic world: Larger attack surfaces, more risk

Security awareness, Threat intel, Cybersecurity
Ever wonder how watering hole attacks work? Join experts from HP and Infosec to learn how you can protect endpoints and employees from similar attacks.
Register now
Webinar & video

Behind the Scenes of Ransomware

Phishing, Security awareness, Threat intel, Cybersecurity
Join us as we pull back the curtain on a ransomware attack to explore the inner workings of the attack, explore how attackers navigate a compromised network and more!
Register now
Webinar & video

The Fork in the Road: Navigating the Difficult Decisions After Falling Victim to Ransomware

Phishing, Security awareness, Threat intel, Cybersecurity
Join us as we pull back the curtain on a ransomware attack to explore the inner workings of the attack, explore how attackers navigate a compromised network and more!
Register now
Webinar & video

NICE Cybersecurity Workforce Framework: Close your skills gap with role-based training

Professional development, Best practices, Compliance, Cybersecurity
Learn how your organization can use the NICE Cybersecurity Workforce Framework with Leo Van Duyn of JPMorgan Chase & Co. and Bill Newhouse of NICE.
Watch now
Poster, infographic & tool

Outsmart Them All Campaign Kit

Phishing, Security awareness, Best practices
We made simulated phishing & training easy. Get the email templates and training tools to launch 12 months of simulated phishing training.
Download
Webinar & video

CompTIA CySA+ certification changes: Everything you need to know

Professional development, Cybersecurity, Certification
Are you ready for the new CySA+ exam? Find out everything you need to know in this webinar featuring CompTIA's Patrick Lane.
Watch now
Webinar & video

Infosec Skills live demo: Close your team’s skills gap

Professional development, Product update, Cybersecurity, Certification
Join us for a live group demo to learn how Infosec Skills can help close your organization’s cybersecurity skills gap.
Register now
Webinar & video

Infosec IQ live demo: Cybersecurity for your entire workforce

Phishing, Security awareness, Product update
Join us for a live group demo to learn how Infosec IQ can help inspire your employees to become one of your greatest cybersecurity assets.
Register now
Poster, infographic & tool

Infosec Skills course catalog

Professional development, , Cybersecurity, Certification
Infosec Skills keeps your team's security skills fresh year-round with over 500 courses mapped to the NICE Cybersecurity Workforce Framework.
Download
Poster, infographic & tool

ROI of Security Awareness Calculator

Security awareness
Download our free calculator, input your organization's costs and measure your return on security awareness training.
Download
Podcast

Preparing the next generation of cybersecurity professionals

Professional development, Cybersecurity
Students high school age and younger are getting fast-tracked into cybersecurity. Some are even learning concepts like packet tracing at just six years old, says Victor “Vic” Malloy, an Independent Consultant working with the CyberTexas Foundation as their General Manager. On today's episode, Vic shares his wealth of engaging stories about inspiring young people through the CyberTexas Foundation, getting people of all ages interested in cybersecurity and developing the next generation of the workforce.

Vic earned a bachelor’s degree from the University of North Texas and a master’s degree from Webster University. He had multiple assignments over 13 years working in cyberspace security at multiple network operations and security centers in the U.S. Air Force. His last position in the Air Force was overseeing daily cyber operations tasked missions within the AF Cyberspace Operations Center, which was responsible for the cyber defense of all Air Force global networks and the global employment of cyberspace capabilities to support ongoing combat operations. Previously, he served as Chief Information Officer for National Security Agency/Central Security Service in Texas.
Listen now
Podcast

Cyber threat intelligence: Learn to become a cybersecurity tactician

Professional development, Cybersecurity
Take a deep dive into the world of cyber threat intelligence with today's guest, Charles DeBeck of IBM’s X-Force Incident Response and Intelligence Services. Threat intelligence is all about research and storytelling, combining hands-on know-how with analytical thinking skills to make a true cybersecurity tactician! You’re not just preparing for the battle in front of you, but for the waves of attacks you’ll see in the future.

Charles DeBeck is a Strategic Cyber Threat Expert for IBM’s X-Force Incident Response and Intelligence Services. He’s had a connected passel of job titles that encompasses risk management, risk analysis and vulnerability assessment, all of which have helped him in his current position.
Listen now
Podcast

Offensive or defensive security: Which career is for you?

Professional development, Cybersecurity
When it comes to your career, should you go red team, blue team or both? Today's guest is QuoLab Technologies Co-Founder Fabien Dombard, who's had roles ranging from penetration tester to malware incident responder to company founder. Fabien shares share thoughts on the skills, disposition and training needed in both defensive and offensive security roles, as well as tips on why you shouldn't be "networking," you should be "making new friends for the future."

With over a decade of experience working in several diverse positions, as well as experiencing firsthand the evolution of security practices and technologies found around the world today, Fabien Dombard has been an integral part in building his new company, QuoLab Technologies, a developer of a collaborative and threat-driven Security Operations Platform (SOP). Prior to QuoLab, Fabien began working in small shop penetration testing roles in several European nations, and his renowned expertise and work ethic eventually led to him heading the Malware Incident Response Team for Deutsche Bank — one of the largest financial institutions in the world. He then founded QuoScient, located in Frankfurt, Germany, with the aim to reconcile humans and machines in the context of security operations, incident response and threat intelligence, and it is actually where QuoLab spun out from. Fabien is committed in his professional endeavors to reconcile human creativity and intuition with the complexity of information technology in the context of security operations. It was precisely this passion that drew him to conceptualize QuoLab and is what brings focus to him and his team moving forward.
Listen now
Podcast

CompTIA CySA+ certification changes: Everything you need to know

Professional development, Cybersecurity
Information security analyst is the fastest growing job category in the U.S., with 32 percent overall growth expected between 2018 and 2028. Take advantage of this opportunity and learn about the updated CompTIA CySA+ certification, which was refreshed in April 2020 to align with the most in-demand skills in this growing field.

Join Patrick Lane, Director of Products at CompTIA, in this audio version of our webinar to learn everything you need to know about the latest CySA+ certification and exam (CS0-002), including evolving security analyst job skills, common job roles for CySA+ holders, tips to pass the updated CySA+ exam and questions from live viewers.
Listen now
Podcast

How COVID-19 is changing phishing, social engineering and security

Professional development, Cybersecurity
Individuals and organizations are shifting routines to accommodate Coronavirus health concerns, and bad actors are updating their strategies to capitalize on the new opportunities. Aaron Cockerill, CSO of Lookout, discusses how cybercriminals are looking to cash in or otherwise disrupt organizations during the pandemic, as well how workplace security is evolving with so many individuals now working from home.

Aaron Cockerill joined Lookout with nearly 20 years of software product management experience. As the Chief Strategy Officer, Aaron is responsible for developing, validating and implementing cross-functional strategic product initiatives that align with the Lookout vision of a secure connected world. Most recently, he served as VP of Mobile Technologies at Citrix, where he and his team were responsible for the development of Citrix’s mobile apps and container technology, while driving the acquisition of Zenprise. Prior to working on mobile technologies, Aaron drove the creation of Citrix’s desktop virtualization product, XenDesktop, which grew into more than $1 billion yearly revenue for Citrix during his five years of leadership. Before joining Citrix, Aaron worked for Akamai leading product management on their enterprise content delivery solution as well as working on the development and deployment of many of Akamai’s advanced content delivery networking technologies. Prior to that, Aaron led product management for OneSoft’s e-commerce system, and he held multiple positions at BHP Billiton in Australia. He holds a BE Materials (Honors) from Wollongong University, Australia.
Listen now
Podcast

Cybersecurity careers: How to stand out, get hired and make more money

Professional development, Cybersecurity
How can you stand out from the crowd when applying for your dream cybersecurity job, and how much should you make? Karl Sharman, a cybersecurity staffing and recruiting pro at BeecherMadden, answers those questions and more on today's episode. Learn how to get your foot in the door, how organizations can avoid writing Magical Unicorn Candidate job descriptions, and why the cybersecurity career landscape is closer to a diamond than a pyramid in shape.

Karl Sharman is a former Head of Recruitment in Football (Soccer) that assisted in selling £1 million worth of talent for a variety of clubs. Since switching to cybersecurity recruitment in 2017, Karl is now the North America Practice Leader for prominent cybersecurity recruitment company, BeecherMadden. With 10 years of recruitment experience, he helps organizations identify, acquire and retain talent in the cybersecurity and risk management sector across North America. He consults the industry on career paths, salary benchmarking, talent pools, and recruitment and retaining strategies. Karl was featured in the top 1% of Search & Staffing Professionals globally by LinkedIn, and BeecherMadden won security recruitment company of the year for 2019.
Listen now
Webinar & video

What’s new in Infosec IQ — Summer 2020

Product update
See the latest features and training content added to Infosec IQ plus a sneak peek at what's coming next!
Watch now
Podcast

2020 election security: Vulnerabilities, lockdowns and disinformation

Professional development, Cybersecurity
The 2020 presidential election is just around the corner, and cybersecurity is once again at the forefront. From disinformation campaigns and election-related vulnerabilities to lockdowns and vote by mail efforts due to COVID-19, we cover it all — and more — in this jam packed episode featuring returning favorite, John Dickson, Principal at Denim Group, Ltd.

John Dickson is an internationally recognized security leader, entrepreneur and Principal at Denim Group, Ltd. He has nearly 20 years of hands-on experience in intrusion detection, network security and application security in the commercial, public and military sectors. As a Denim Group Principal, he helps executives and Chief Security Officers (CSO’s) of Fortune 500 companies, including major financial institutions, launch and expand their critical application security initiatives.
Listen now
Podcast

Hunting criminals and stolen identities across the internet

Professional development, Cybersecurity
Explore the hidden corners of the internet and the stolen identities that live there with today's guest, Amyn Gilani, Vice President of Product at 4iQ. He talks about his path from red teaming to cyber attribution intelligence, where bad guys hide on the internet, and what it's like to be “on a mission to unmask cybercriminals.”

Amyn Gilani is the Vice President of Product at 4iQ, a Los Altos-based adversary intelligence company. Previously, he was a Chief Technologist at Booz Allen Hamilton where he provided expertise to federal and commercial clients focusing on incident response, red teaming, threat hunting and cybersecurity operations engineering. Prior to joining Booz Allen, Amyn was a Vice President in Information Security at Goldman Sachs where he led red team operations and emulated sophisticated attacks against securities trading platforms and payment systems. He began his career serving in the United States Air Force as an intelligence analyst and was on detail at the National Security Agency and United States Cyber Command.
Listen now

How Comcast stays ahead of technology change with help from Infosec Skills

Professional development, Best practices
Infosec Skills is a very good place for building technical acumen and engineering development knowledge. It enables us to provide training to the entire team on relevant topics.
Read more
Poster, infographic & tool

Remote Working Awareness Kit

Security awareness, Best practices
You don't have to sacrifice your organization's cybersecurity as your employees transition to remote workstations.
Download

Concord Technologies fosters security culture, avoids malware

Phishing, Security awareness
Infosec IQ really helped us in achieving what we're looking to achieve. And the benefits are in the increased awareness and confidence. The training is not intrusive and it's easy to use.
Read more

MSP protects profitability & client data with awareness training

Phishing, Security awareness, Compliance
Cleaning up a malware infection can take hours and multiple personnel. Since adding Infosec IQ into our service offering, we've had fewer infected machines, which helps protect our margins.
Read more