Studies suggest that around 90% of all cyber security breaches result from human error. While technology is critical, you must balance your focus between people, process, and technology investments to maximize risk reduction. We find that many awareness programs fail to really grab the attention and action of the workforce. Our experience in creating compelling awareness and behavior change is driven from in-company experience and creative tactics that “turn heads” and drive interest.
Phishing attacks are a significant starting point of a large majority of today’s breaches. Ethical phishing programs are designed to simulate these types of attacks to members of your workforce. Rather than deploying malware or stealing information/credentials, an educational message/video/call to action that reinforces how clicking on the links or attachments could have been prevented.
We will help you select, configure, and execute your program, obtain a current state phishing risk baseline, and formulate an ongoing campaign schedule with appropriate interventions throughout.
We have experience communicating, selling, and buy-in of senior executives across various industries. This requires telling a compelling story, truth and accuracy, and filtering unnecessary technical detail where appropriate. While executive awareness efforts usually are part of broader projects, we can do short engagements to help you jump-start your efforts if you don’t yet have a program, funding, or any executive attention to the critical needs of cyber security and privacy.
Outcomes for executive awareness can come in the form of coaching, defined executive presentations/deliverables, or joining you at your side to help you communicate your story and invoke the correct actions