Nick Deacon Elliott, VP of Sales & Operations at Boxphish, had the opportunity to speak with Expert Insights about the best practises to implement an effective cyber security awareness training programme and simulated phishing campaign.
Why Implement A Cyber Security Awareness Training Programme?
How to ensure the experience is engaging for your staff?
What is the benefit, why are we implementing this programme, why are my IT Team sending me simulated phishing emails?
At Boxphish we believe the key to an effective Cyber Security Awareness Programme is to clearly articulate the why? This can be done in a variety of ways;
- Highlight that Cyber Crime is a real threat and can have severe consequences
- Link cyber attacks to both personal and work life, an effective Cyber Security Awareness Training programme should cover both
- You are not asking for hours a month, an effective campaign should take no more than 5 minutes per month of your employees time
- Ultimately end users are responsible and should be accountable for their actions, it is key that you empower your staff so they know how to keep themselves safe in their digital life
- Simulated Phishing – let your end users know that there are tests coming, these are used to measure the effectiveness of your Cyber Security Awareness Training campaign not to call people out. They are a great measure of real time analysis and highlight who needs extra support
Finally a huge thank you to Megan Rees from Expert Insights for providing us with the opportunity to share our thoughts.
The full article can be found here: https://expertinsights.com/insights/developing-the-human-firewall-implementing-an-effective-security-awareness-training-program/