Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

Cybersecurity hiring: Why employer and higher ed collaboration is key

Organizations looking for cybersecurity professionals need to optimize the biggest pool available: the 20 million students enrolled in higher education.
Read More
Article

Infosec Scholarship winner profile: LaNeyshia Drew

How this help desk technician breaks into the cybersecurity industry and sets sights on protecting autonomous vehicles.
Read More
Article

Ransomware penetration testing: Verifying your ransomware readiness

Find out how well you might do with ransomware pasted on your penetration testing skills.
Read More
Article

Purple Fox rootkit and how it has been disseminated in the wild

Analyze how Purple Fox works malware victims are impacted and how to avoid this threat
Read More
Article

How to use MITRE ATT&CK Navigator: A step-by-step guide

Learn how to use the MITRE ATT&CK Navigator and showcase this data in formats that can be useful in multiple scenarios.
Read More
Article

After certification: Investing in employees' cybersecurity career pathways

Hear from two industry experts about how continuing education can be a differentiator in retaining and hiring cybersecurity professionals.
Read More
Article

Where do ransomware, cyber education and cyber insurance intersect?

Ransomware payments are one of the hottest debates within cyber insurance — along with cybersecurity education and other prevention strategies.
Read More
Article

Degree vs. certification: Best path to become a cybersecurity analyst

What's the best path to becoming a security analyst: earning a degree or a cybersecurity certification?
Read More
Article

Cybersecurity analyst job description

Cybersecurity analyst is a great career choice with a growing number of job opportunities. Learn what it takes to succeed in this role.
Read More
Article

Deadbolt ransomware: The real weapon against IoT devices

Learn about the key points of the Deadbolt ransomware, how it operates and how to recover the damaged files without paying the ransom.
Read More
Article

How to find the perfect security partner for your company

Not all advisors are created equal, so you’ll want to choose carefully and consider a variety of factors.
Read More
Article

Red Teaming: Main tools for wireless penetration tests

Learn about some of the main tools for wireless pentesting.
Read More
Article

Cybersecurity Weekly: Dodging MFA, struggles implementing zero-trust and tax season fraud concerns

New MFA warnings from CISA and FBI, new report indicates struggles with zero-trust implementation and threat actors leveraging tax season to commit fraud. All this, and more, in this week’s edition of Cybersecurity Weekly.
Read More
Article

Could psychology be the key to cybersecurity awareness? Research points to yes

Understanding the psychology of cybersecurity will go a long way towards helping cybersecurity teams implement best practices.
Read More
Article

Converting a PCAP into Zeek logs and investigating the data

Learn how to better understand the Zeek log file structure and how to use the logs when investigating events.
Read More
Article

11 phishing email subject lines your employees need to recognize [Updated 2022]

53% of organizations reported a phishing-related breach. Here are the top phishing email subject lines your employees should be able to recognize.
Read More
Article

How IT pros can keep their organization on the cutting edge

CompTIA surveyed professionals on their company's technology. Three trends stood out for those who identified as already on the cutting edge.
Read More
Article

Navigating local data privacy standards in a global world

Global connection has a unique set of privacy standards to navigate.
Read More
Article

ISC2 CGRC domain #1: Information security risk management program

Learn the key information security risk management objectives in the CGRC exam — and how to use that knowledge in your career.
Read More
Article

ISC2 CGRC: Overview & career path

Earning the Certified in Governance, Risk and Compliance certification can help prove to employers that you stand well above the rest.
Read More
Article

Security gives your company a competitive advantage

When you properly secure your software system and then can prove it, you obtain a competitive advantage that helps you earn trust and win sales.
Read More
Article

Fundamentals of IoT firmware reverse engineering

Explore the basic steps on how to analyze IoT firmware from scratch.
Read More
Article

CompTIA PenTest+ domain 5: Tools and code analysis

Learn how Domain 5 of the CompTIA PenTest+ exam tests knowledge of programming and the tools used during a penetration testing engagement.
Read More
Article

CASP+ vs. CISSP: Which certification should you get in 2022?

CASP+ and CISSP are both advanced-level certifications that validate your cybersecurity skills, but which certification is best for your career?
Read More