Suggested Answer:The Answer: security awareness training is to modify employees behaviour and attitude towards towards enterprise's security posture.🗳️
Security-awareness training is performed to modify employees behavior and attitude toward security. This can best be achieved through a formalized process of security-awareness training. It is used to increase the overall awareness of security throughout the company. It is targeted to every single employee and not only to one group of users. Unfortunately you cannot apply a patch to a human being, the only thing you can do is to educate employees and make them more aware of security issues and threats. Never underestimate human stupidity. Reference(s) used for this question: TIPTON, Hal, (ISC)2, Introduction to the CISSP Exam presentation. also see: Harris, Shon (2012-10-18). CISSP All-in-One Exam Guide, 6th Edition (p. 130). McGraw-Hill. Kindle Edition.
The primary purpose of a security awareness program is to modify:
A. Employee's attitudes and behaviors towards the enterprise's security posture.
These programs aim to educate and influence employees' understanding, attitudes, and behaviors regarding security practices within the organization. By raising awareness, providing training, and encouraging the adoption of secure practices, the program seeks to foster a culture of security consciousness among employees, thus enhancing the organization's overall security posture.
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
nanson
3 months, 1 week ago