I think humour should almost always be employed when trying to put across information security awareness to people, especially as half the time they don’t even want to be there anyway.
I did a webinar with my colleagues of Host Unknown last week, hosted by Dan Raywood of IT Security Guru on just this subject. Take a look at it below (login required I am afraid):
Humour is a cross cultural phenomenon and not as exclusive as many people think. Use it to good effect to get your message across, and use the tips that we give, especially at the end of the webinar.
Embrace your inner stand up comedian!