Industry First Security Awareness Practitioner Certification Offered by InfoSec Institute

Security awareness training for employees is now a vital part of any cybersecurity strategy, yet until recently there was no certification program available to confirmed proficiency in the creation and management of these vital training programs.

The InfoSec Institute has addressed this problem with the launch of a boot camp. The boot camp provides essential training in this area and certifies that IT professionals have the necessary skills and knowledge to create effective security awareness training programs and are capable of maintaining enterprise security awareness education programs that are effective at changing end users’ behavior.

It is one thing to provide training for the workforce to eradicate risky behaviors, teach employees the skills needed to identify malicious emails, and reduce susceptibility to phishing attacks. However, creating effective programs is another matter. The new boot camp helps IT professionals develop the skills they need to run campaigns with confidence. Obtaining certification will confirms to current and potential employers that participants in the boot camp can create effective training campaigns and phishing simulation programs that will succeed in developing a security culture in an organization.

“The best security awareness programs go beyond routine phishing simulations and training campaigns to sustainably shift workforce security culture,” said ack Koziol, CEO and Founder of InfoSec Institute. With our new CSAP boot camp and certification we’ll arm program managers with the strategies, tactics and ideas to kickstart a strong security awareness program and reduce cyberattack susceptibility.”

The boot camp is delivered in four forms to suit students’ different learning styles: Public training classroom-based boot camps, training at clients’ locations, a self-paced CBT training program, and an interactive, live-streamed course which can be taken in any location. Students can also earn CPEs for their certification by self-reporting to organizations like (ISC)2 or ISACA.

The boot camp covers evaluating the current security culture and level of susceptibility to various forms of cyberattack, assessment of existing security awareness programs,  getting buy-in from the board and obtaining support for the program, building engaging security training content that measurably reduces susceptibility to phishing attacks, selecting the best SPIs to measure reach and impact, enforcement of security policies, integration of security policies into existing endpoint protection solutions, and selection of the most appropriate training program for an organization.

Author: Richard Anderson

Richard Anderson is the Editor-in-Chief of