Security awareness training (or Internet Security Awareness Training - ISAT) represents a form of education where employees of various different levels are introduced to basic security concepts, regulations and policies. Trainings of this type are particularly suited for high-turnover organizations and those whose employees constantly exchange large amount of sensitive information.
Trainings are of vital necessity in order to ensure business continuity and secure your assets. It is widely accepted that the human factor is the weakest link within a company's cybersecurity and this makes security awareness even more important.
The service provides three distinct forms of training depending on the target audience. Based on them, the topics covered are as follows:
Target audience: Employees of all levels
- Data privacy
- Spyware and adware
- Phishing and vishing
- Social engineering
- Secure browsing
- Workspace security
- Data backups
- Equipment disposal
- Data disposal
- Data recovery
- Access rights
- Targeted attacks
- Breach aftermath
- Incident response
- Creating awareness
Target audience: Administrative personnel
- Security basics
- Risk management and compliance
- Roles and responsibilities
- IT security governance
- IT security process and program management
- Defining and monitoring the security posture
Target audience: Technical parties
- Threat modeling
- Common attack types and their mitigation
- Network security
- Secure development concepts
- Process management
- Industry’s best practices
During the lecture course, employees gain theoretical knowledge of how to react to common threat scenarios with the corresponding plan(s) of action. As part of the training, threat models as well as various security concerns such as phishing, social engineering and others are presented to the trainees.
The program is subject to change upon request.
Each training session ends with a quiz based on the covered topics and prepared specifically for the target audience. A manual assessment of the results is also included for each employee.