ABSTRACT
This chapter reviews the literature on awareness and training programmes and then discuss some potential solutions. It discusses the following four groups: formal education, professional training, employee training, and people training. To improve the awareness of employees, many vendors have gradually formed several programmes. Although technology-oriented safeguards such as firewalls and intrusion detection systems are found in a large number of organizations, the focus on human factors in security including awareness and training initiatives has historically lagged behind. Cybersecurity countermeasures awareness is the state where individuals are aware of their cybersecurity mission within the organization. The training delivery methods to improve awareness among employees or information technology professionals are the subjects of several studies. A Security Education, Training and Awareness programme is designed to reduce the number of security breaches that occur through a lack of employee security awareness. Sharing experiences and knowledge between the employees of an organization facilitated by participation makes classroom training more effective.
