Personnel of the organisation and relevant interested parties should receive appropriate information security awareness, education and training and regular updates of the organisation’s information security policy, topic-specific policies and procedures, as relevant for their job function.
Information security awareness, education, and training refers to the process of educating individuals about the importance of protecting sensitive information and teaching them how to do so effectively. This can include providing employees with information about information security risks and threats, such as malware, phishing attacks, and data breaches, as well as training on how to protect against these threats.
Several methods can be used to deliver information security awareness, education, and training, including:
AvISO will be updating and reviewing all the information regularly, so keep us bookmarked and keep checking!
Got a question or need help? Don't hesitate to reach out to our team.
If you would like to know more about ISO Standards, Certification and the value of a good management system you can add to your business we would love to hear from you: Kent: 01892 800476 | London: 02037 458 476 | info@avisoconsultancy.co.uk