Application security, Malware, Phishing

DHS CISO wants repercussions for workers who fall for security scams

Falling for a phishing scam is embarrassing enough without having to learn it came from your boss as part of a test of your cybersecurity knowledge, but that is what Paul Beckman, chief information officer of the Department of Homeland does to his staff.

Beckman said he sends fake phishing emails to his staff to see who does not follow protocols and fall for the scam, according to DefenseOne. Anyone who fails the test is required to undergo remedial security training, but Beckman wanted to take the punishment one step further.

If Beckman had his way he would use both tests and an individual's overall susceptibility to security threats as part of their job evaluation process and as a factor in deciding whether or not they are fit to handle sensitive data and have a security clearance, he said.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.