Security Culture

The ideas, customs, and social behavior of a particular people or society
that allows them to be free from danger or threats.

The Security Culture Framework

Free and Open

The Security Culture Framework is a free and open framework to build and maintain security culture in any organization. It was created by Kai Roer and have become a thriving community with contributors from around the world.

employeesA strong Community

The Security Culture Framework consists of members and users from around the world – from Australia, via Thailand and China, to EU via Africa, to the USA via South and Latin Americas. All around the world, the need is the same: a community to learn and share how to build and maintain security culture.

Register now!

2A Simple Process

The Security Culture Framework focus on theĀ basics – there are plenty of examples of frameworks that get so complex and complicated that no-one are able to successfully implement them. By focusing on simplicity, the Security Culture Framework allow you to do the important things: transforming culture!
It is simplicity at its best!

The GoalCampaigns that makes sense

The key in the Security Culture Framework is the Security Culture Campaign – the activities you do in a timed session; (think of it as a short project) aimed at achieving a particular objective; for a specific group.

3Use Existing Content

The Security Culture Framework is a generic approach aiming to fill the gaps in the way security awareness is currently being done. We believe there are great trainings and security awareness content available – from internal and self-made activities, via SANS to commercial offerings. The SCF is not a replacement for such content – instead, we help you maximize your investment by following best practices and by implementing a simple process to handle your security awareness activities in a way that helps you build and maintain good security culture.

Start today!

Get Unstuck!

There are many ways to get help when you need to get yourself unstuck.


Join the Community

We welcome anyone interested in security culture to join the community. It is free, all you have to do is to register. Share your questions and experience with others to help improve our industry.

CSCP-BADGEHelpĀ Available

Should you need any help with implementing the framework in your organization, just ask for help! A Certified Security Culture Practitioner have completed a five week training course, and the work has been controlled by our trainers to ensure the Practitioner know how to build and maintain security culture using the Security Culture Framework. Some of the Practitioners also offer consulting, so you can bring them on board to help you succeed!

Sign up today!

man-and-wheelTraining Available

Every summer, the Security Culture Summer Camp creates new Certified Security Culture Practitioners. The Summer Camp is open to anyone who want to join, just sign up!

Start learning today


The Security Culture Framework is licensed using the Creative Commons Share Alike license. This basically mean you are free to use, alter and play with the framework, also in a commercial setting, as long as you a) inform where you found it (use a link back to us), and b) share the adjustments you make back to the community. Where better to do that, than here?
Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

Other license?

Do you need a different kind of license? Contact us to discuss your needs.

Engage me!

This site uses Akismet to reduce spam. Learn how your comment data is processed.