© 2020 Content Security Pty Ltd.

Training

Security Awareness Training

You have the best security your budget allows, but why is your network still being compromised? Consider strengthening your weakest links – your people.

All it takes is one click by an employee to infect a work station, allow hackers in, cause a ransomware attack, an expensive data breach or worse, a cyber attack.

By increasing the awareness of users within your organisation, Content Security can reduce the risk of a data breach or data loss, and we show this through measurement and reporting before and after awareness training.

Your current security layers do not sufficiently cover your weakest link – your employees

Nine out of every ten malware attacks are propagated through human interaction. Training your users to be security aware will provide them with the skills to flag suspicious behaviour such as phishing emails or social engineering attempts. When you ensure your employees understand the dangers they face, you can greatly mitigate the risks your organisation faces.

Traditional once-a-year security awareness training won’t cut it any more. Attackers bypass your technology and target your employees who are frequently exposed to sophisticated phishing attacks.

Training that's built for results and customisable to your organisation

It is critical that the training and implementation fits the organisation. We can customise who is trained and how they are trained by categorising your employees into groups based on their level of risk to the business. We also focus on specific topics that are more relevant to your industry, and more specific to your organisation.

We specialise in making sure that employees understand the mechanisms of spam, phishing, spear phishing, malware, ransomware and social engineering, and are able to apply this knowledge to their day-to-day job.

Continuous education yields measurable outcomes

Our partner Wombat Security Technologies can perform a continuous cycle of assessment, education, reinforcement, and measurement which maximises learning and lengthens retention. Customers have experienced up to a 90% reduction in successful external phishing attacks and malware infections using the following four-step approach to security awareness and training:

Assess

An important first step to a comprehensive security awareness and training program is to evaluate your employees’ knowledge and your organisation’s susceptibility. Wombat offers customisable assessments and simulated attacks (e.g., mock phishing emails), as well as Teachable Moments that provide tips and practical advice for employees who fall for mock phishing, smishing, and USB attacks. These brief exercises explain the dangers of actual attacks and help motivate employees to participate in follow-up training.

Educate

Wombat’s interactive training modules are the key to educating your employees about security threats in the workplace and beyond. These 10- to 15-minute modules give users the opportunity to understand the types of risks they might encounter and recognise how their actions can have a positive impact on the safety and security of corporate and personal assets. Its Auto-Enrollment feature allows you to automatically assign training to employees who fall for simulated phishing attacks and those users who don’t exhibit a desired level of proficiency on Predefined

Reinforce

Wombat’s Security Awareness Materials — a library of images, posters, articles, and gifts — help you emphasize best practices and positive behaviors within your workplace. By making these messages more visible and recognisable, you reinforce your training and help employees retain their knowledge.

Measure

The most effective training program is one that is flexible enough to adapt and change according to your needs. That’s why measurement is so important. Wombat’s approach allows you to gather powerful analytics about your organisation’s strengths and weaknesses, evaluate results, and plan future training accordingly prior to repeating the four-step cycle.

Why Content Security?

Our team are seasoned, experienced and business-minded security consultants with an average of 10 years experience having conducted hundreds of training programs for organisations large and small.

For more information please contact our cybersecurity professionals today.