Buy essay on Learning models in information security

Frequent breaches of information security systems in organizations promoted development of learning program for introduction of security requirements to each and every employee and managers of an organization. Effective learning, according to Gilbert, is based on a continuum that consists of the following learning models: awareness, training and education. Each learning program starts with awareness, goes to training, and develops into education.
Awareness is dedicated to change behavior or strengthen effective security practices. According to Wilson, Mark and Joan, the main aim of awareness presentations is to focus attention on the security. Hence, awareness presentations allow you to recognize IT security concerns and respond accordingly. It is important to mention that in awareness activities the information recipient is the learner. Meanwhile, in a training environment the learner features a more active role.
So, regarding security management, awareness should be referred to a learning program that is aimed to change organizational and individual attitudes for realizing of the importance of security and consequences of its break. (Gilbert). Awareness is not training but a simple presentation.
An intermediate level of learning program between awareness and training is Security Basics and Literacy. At this level core set of terms, concepts and topics is available. It provides the foundation for training by giving the versatile background for key security terms and concepts.
The next level of instruction is training, that is more complex. Training develops knowledge and skills to enhance performance of job and raises productivity of employees. The most essential difference between awareness and training is that training teaches skills while awareness focuses attention of a person on an issue (Wilson, Mark and Joan).
According to Gilbert, education is an advanced form of training. It enhances and develops knowledge, skills and abilities, and integrates security skills of different specialties into a common base of knowledge.

Works Cited

Gilbert, Courtney, Developing an integrated Security Training, Awareness, and Eduaction Program. GSEC Practical Assignement version 1.4b, Option 1, Sans Institute 2003.
Wilson, Mark, Joan Hash, Building an Information Technology Security Awareness and Training Program. Computer Security Division, Information Technology Laboratory, National Institute of Standards and Technology Gathering MD 20899-8933, Oct. 2003.