Read NBlog, the NoticeBored blog
Click the banner for the site map of NoticeBored.com, the information security awareness service
More about NoticeBored

Achieve positive business outcomes

Click here to download the product data sheet for NB ClassicYour interest in NoticeBored presumably reflects a desire to raise awareness of security but think about it: is heightened security awareness really your goal?  Generally speaking, the objective of information security as a whole, including security awareness, is to achieve a positive outcome for the organization, meaning two things:

  1. Reducing costs, specifically the net result of reducing or avoiding  losses through security incidents, less the amount invested in security controls. 
  2. Reducing risks and increasing management confidence in the system of controls.  This element includes compliance with myriad legal and regulatory obligations relevant to information security and IT governance.

Simply “being aware” of security is not the same as being secure: to us, it is merely a step on the way towards the ultimate objective.  We see security awareness as a means of informing employees, helping them understand and commit to their security responsibilities, motivating them to change the way they behave and finally achieving that positive outcome we set out to achieve.

NoticeBored - a deceptively simple idea

Rather than supplying a bunch of stuff to hand out at your annual security awareness event, NoticeBored supports rolling (continuous, year-round) awareness programs.  Our materials cover a planned sequence of information security topics.  Month-by-month, your employees gradually become familiar with  information security as a whole.  Each topic is consistent with and complementary to the others and there’s always something fresh and interesting to read.  The consistent and engaging style informs and motivates people to take an interest in information security, gradually making security an inherent part of the corporate culture.

Helping over-worked security professionals achieve more

Security awareness is usually just one thing on a long list of priorities for the busy Information Security Manager, assuming that there is someone dedicated to that role.  Information security is often a part time job for the IT person in medium sized enterprises, and just a pipe dream for most small firms. 

While some leading organizations have the luxury of a dedicated security awareness and training person or team, in practice most of their time is absorbed in administering and delivering courses or writing policies and procedures.  Awareness is almost always left on the back burner - opportunity lost.

Genuine unedited customer feedback

NoticeBored is a boon for organizations of all sizes.  We research the topics, conceive and write the awareness materials, then polish and package them so all you have to do is use them.  Leaving the hard work to us frees up your time for other things such as running awareness and training events, and generally interacting with your people, face-to-face.  Find out what security issues your colleagues are facing on a daily basis.  Discover opportunities to help them, and help the business, through better security.

Once the security culture truly starts to take hold, security will gradually climb management’s agenda.  Far from being the “No Department”, they will come to appreciate that information security supports business objectives and enables business activities that would otherwise be too risky.  Through its associations with governance, compliance and risk management, they will see how security fits in to the broader context.

By sparking their interest through creative technical security awareness materials and activities, IT professionals will increasingly take security instinctively into account, instead of being oblivious or even obstructive.  Before you know it, they will come to you for advice before it’s too late.  They might even surprise you with novel approaches to security, opening the door to security architectures that support the business long-term.  Getting more value from your investment in technical security controls is a huge benefit to awareness: conversely, if the IT people are ignorant or hostile towards security, you are losing out.

Security-aware employees become your ears and eyes on security, risk, fraud and related matters.  In time, security becomes an integral part of the organization’s DNA - “the way we do things here”.  Far from being resistant to security, employees recognize the benefits for them personally as well as for the organization, its stakeholders and their job security.  Not only do they know they ought to comply with the security policies and procedures, but they understand why.

Find out more about NoticeBored, read the  product data sheet PDF file, download our samples or contact us to evaluate the product.  And if you are too busy to do that right now, stick it on your to-do list ... in red.
HomeAbout NB > More about NB >

Copyright © 2012  IsecT Ltd.