Information Security Awareness Forum
The Information Security Awareness Forum was founded by the UK chapter of the Information Systems Security Association in 2008. Its objective is to create a co-ordinated cross-industry / cross-institution approach for delivering security awareness messages to large corporations, small and medium enterprises, and individuals. Membership of the forum comprises industry bodies and professional organisations that have a specific interest in promoting security awareness.
The forum is not seeking to “reinvent the wheel”. There already exists a lot of awareness materials for individuals as well as organisations. However there has been a lack of co-ordination, resulting in overlaps and gaps too. The forum brings together interested parties to work together to remove some of the overlaps, and to partner with organisations to fill some of the gaps.
The group has no plans to develop awareness materials where they already exist, so with their permission, will use materials from organisations such as Get Safe Online which already engages in awareness campaigns as well as being a suitable repository for the target audiences to reference.
Sponsorship
The forum receives no direct funding, and its participants work on a voluntary basis. Sponsorship of the forum is currently restricted to sponsorship of particular projects that the forum initiates.
Deliverables
One of the first deliverables of the forum is a Guide for Directors which is now available from the awareness forum's website . This is a set of short guides covering different aspects of information security which directors of organisations need to be aware of. The guide is being developed in conjunction with BT and the Information Assurance Advisory Council, and is an example of how the forum engages with industry players through our support of projects focused around specific deliverables and outcomes.
Background
The forum was initiated by the UK chapter of the Information Systems Security Association, which continues to be a primary supporter of the forum.
Members
Membership of the forum is restricted to professional bodies with a specific interest in information security awareness:
- (ISC)²
- ASIS International
- British Computer Society
- Communications Management Association
- Cybersecurity Knowledge Transfer Network
- European Information Society Group
- Get Safe Online
- Information Assurance Advisory Council
- Information Security Forum
- Information Systems Audit and Control Association
- Information Systems Security Association
- Infosecurity Europe
- Institute for the Management of Information Systems
- Institute of Information Security Professionals
- IUA Digital Risk Working Party
- Jericho Forum
- National Computing Centre
- National e-Crime Prevention Centre
- Security Awareness Special Interest Group
- The Institution of Engineering and Technology
- Worshipful Company of Information Technologists
References
BCS hosts launch of new security awareness forum
New IT security forum aims to beat awareness deficit
Security awareness-raising forum is launched
Internet day highlights web risks