Social Engineering and Behavior Skills
"More and more, we see technical attacks that are used to gather information that is, in turn, used to perform a social engineering attack against an organization to get employees to inadvertently give up credentials or otherwise provide access to the attacker," said Wenzler. As ransomware, phishing emails, false login sites and more continue to be used more frequently, there is a need for security professionals who understand the human side of these exploits. Wenzler added that the ability to recognize behavior patterns in social engineering will be needed by organizations in order to create stronger training programs, better policies and procedures for staff to follow, and ways to empower their staff to perform their day-to-day tasks in a more secure manner.