In the Focus Group Awareness, the ‘Cyber Security Behavioural Metrics’ workgroup has developed a new tool designed to inspire security professionals in their security awareness initiatives. The Secure Behaviour Framework [link to Tools section of the coalition’s website] addresses 15 security categories and approximately 400 corresponding secure behaviours expected from end users to safeguard the confidentiality, integrity, and availability of information, assets, and people.
The workgroup has compiled and reviewed insights, as well as best and worst practices related to security awareness metrics. This user-friendly tool allows easy access to behaviours and metrics, making it straightforward to download and implement.
In 50% of the documented behaviours, we have identified ways to measure them, which should capture the interest of your CISO, who might be sceptical about these metrics.
The Secure Behaviour Framework is a “work in progress,” and the ‘Cyber Security Behavioural Metrics’ workgroup is eager to receive your feedback. Please reach out to Anastasiya Tretyak ([email protected]), and Jan Populaire ([email protected]), who are leading the workgroup, with any comments or suggestions or send your feedback to [email protected]. . Other participants include Ann Mennens (European Commission), Suzanne Oyen (Euroclear), Patrick Hauspie (Vlaio), Rudy Gevaert (UGent), Karolien Van Bel (Olinko/Cronos Group), Els Vandersloten (Colruyt Group), Saloua Naqbi (BNP Paribas Fortis) and Laure-Anne Bourdain (Isabel).
The workgroup aims to continually enhance the Secure Behaviour Framework, incorporating your feedback, and to develop additional resources such as a CISO dashboard (to assess organizational security behaviour) and a personal scan (to evaluate individual security practices). If you’re interested in collaborating, please contact Anastasiya or Jan.