SCIPP International, a non-profit organization, has been formed with the help of security professionals around the world in an effort to develop and maintain the SCIPP Generally Accepted Practices.
The organization was founded by Winn Schwartau, who pioneered the development of a common body of knowledge of security awareness best practices called the SCIPP GAP. Officials say the SCIPP GAP is also an effort to expand security awareness training and certificate programs for end-users.
“Studies have shown that up to 60 percent of all computer security breaches stem from basic user errors, more than any other single factor,” Schwartau said in statement. “We formed SCIPP to gather security awareness best practices in a single repository and incorporate them into educational and certificate services for end users and their organizations.”
SCIPP's four-part certificate of security awareness programs can be customized for differing levels of achievement in the corporate, government, academia and the self employed arenas.
“By investing in security awareness for end-users consumers, organizations greatly improve their security posture by preventing security incidents as well as detecting and reacting to events more quickly, while reducing vulnerabilities and their associated costs in monetary and reputation damage,” said Howard Schmidt, president and chief executive officer of R&H Security Consulting LLC and former cybersecurity adviser to the White House.
“The certificate of security awareness is an important component of the security training process because it provides organizations a level of assurance that their employees, partners and customers have successfully mastered the topics taught based upon the SCIPP GAP.”