DHS CISO Paul Beckman wonders whether security clearances should be stripped from those who consistently fall for phishing schemes. Beckman: “There are no repercussions to bad behavior. There’s really nothing to incentivize these people to be aware” Beckman indicated he wants to discuss with DHS’s chief security officer – who’s responsible for overall personnel security – on the idea of potentially incorporating employees’ susceptibility to phishing in broader evaluations of their fitness to handle sensitive information. The former CIA CISO Robert Bigman calls Beckman’s idea “ridiculous””]
Source: https://www.cuinfosecurity.com/blogs/punishing-those-who-fall-for-phishing-schemes-p-1940