Case Study: Designing a SETA Program
Anytown USA Bank prides itself on being very responsive to its customers. It offers 24-hours staffed customer care center with a toll- free number, over the past year, there has been a significant decline in calls and a corresponding increase in email services request. As information Security Officer (ISO), you are very concerned that customer information classified as protected is being sent via email or email attachment. You have requested a meeting with the director of IT to explore secure email options since regular email is sent across the internet in plain text. In the meantime, you want to make sure that employees understand the danger of using regular email.
Working with the training department, you are going to launch a security awareness campaign. The theme is "". The message is that users should never write anything in an external email that they wouldn't write on a postcard.Create a security awareness campaign focused on the topic. Include in this plan specific on how you intend to deliver the message.Create at least one piece of supporting collateral.Design a way to test the effectiveness of your message.Before launching the campaign, you want to make sure you have the full support of the executive management.What type of "educational" program would you develop for the management?What would the message be?Outline the SETA program that will be needed to ensure the success of the "secure email" application.
Note: Please this should be answered as listed and any references can be added on a separate page.