Some of the strategies for organizations can implement are-
- Mandatory annual security training
- Quarterly role-based security training
- Monthly security newsletter
- Daily social media posts on information security – these could include graphics, tongue-in-cheek humor, cartoon strips, news articles of security breaches, and easy tips for everyday information security
- Regular audits of information security practices
- Simulated phishing campaigns, and specialized training for those who fall victim
- Security-based games and contests
- T-shirts, banners, posters with witty one-liners promoting security