Cyber Security Training That Employees Don’t Hate

Uploaded on 2019-11-01 in JOBS-Training, FREE TO VIEW, TECHNOLOGY--Resilience

Most employees hate taking cybersecurity awareness training. It doesn’t have be that way. If you want your security awareness training program to be effective, address some of the most common user complaints.

Here are five common complaints of security awareness training and the ways to make your people like and engage with Cyber Training to make them love it.

1. Cybersecurity awareness Training is said to be Boring
It can be boring, at least the way most organisations do it. Make it more exciting, vary it, and make it a game.
Security awareness training videos that look like professional, Netflix-style episodes are the ones I’ve seen employees ask for more of.  Security awareness training companies do this sort of thing, or professional production companies will customise videos for your company. 

2. Employees don’t understand the importance of security awareness training
Most end-users don’t understand the importance of security awareness training.  Make sure that employees know how important security awareness training is to their own success and to the organization’s. If the organisation has been hacked, don’t hide the details. Let all employees know how it happened, what the hacker did, and how it could have been avoided. 

3. Security awareness training isn’t Personal
If you want to make someone care, make it personal. Don’t just train them for protecting your business. Let employees know you care about them and their families. Give them training and tools to help them be more cybersecurity aware at home. Employees who train their spouses, parents, and children in cybersecurity awareness will be one of your best defenders at work.

4. Security awareness Training isn’t timely
Make sure your security awareness training program is personalised, targeted to the user’s role, and appropriate for the time of the season. For example, don’t give training on how to avoid fake invoices and malicious wiring transfers to employees who don’t pay bills.  Make sure all employees are trained on how to avoid fake information requests for their personal tax identification information and that HR/payroll department employees receive training in how to avoid fake information requests from someone claiming to be their organisation’s tax processor. 

Give instructions on how to avoid fake gift card scams around Christmas. Instruct people on how to appropriately patch their systems and how to appropriately recognise their installed anti-malware programs so they can’t be fooled by a fake version of either.

5. Security awareness Training feels punitive
You’ve got to motivate people to take the training, but if you make it fun and different, you can motivate people to want to learn more. The gamification I talked about earlier is a good way to do it. For example, tell every employee who reports 100% of all real and simulated phishing emails for a year, that they will get an Amazon gift card. 
Make the amount enough so that they will care. Then tell them to watch a few videos to learn about what to be on the lookout for. Tell them every month they’ll get a different topic and that they’ll be tested on that topic and others in the following month. 

Companies whose cybersecurity awareness training programs use all these tactics have employees who are better, happier, and safer because of them.

CSO Online:       GoCyber:

You Might Also Read: 

UK Workforce Lacks Basic Cyber Training:

_____________
For free Cyber training information please contact Cyber Security Intelligence  

 

 

 

« Cyber Training For Every US Federal Employee
A £370m Investment To Boost AI In Britain »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Canadian Centre for Cyber Security (CCCS)

Canadian Centre for Cyber Security (CCCS)

The Cyber Centre is the single unified source of expert advice, guidance, services and support on cyber security for government, critical infrastructure, the private sector and the public.

Micro Focus

Micro Focus

Micro Focus is one of the world’s largest enterprise software providers. We deliver trusted and proven mission-critical software that keeps the digital world running.

CUIng.org

CUIng.org

The CUIng initiative was launched to tackle the problem of criminal exploitation of information hiding techniques.

Sintef Digital

Sintef Digital

Sintef Digital carries out research in Information and Communication Technology for industry and the public sector.

Blockchain Slovakia

Blockchain Slovakia

Blockchain Slovakia is a non-profit organization that brings together researchers, developers, entrepreneurs, regulators, investors and the public to support blockchain technology in Slovakia.

Polyrize

Polyrize

The Polyrize continuous authorization platform for SaaS and IaaS stops tomorrow's public cloud cyber threats, today.

Sadoff E-Recycling & Data Destruction

Sadoff E-Recycling & Data Destruction

Sadoff E-Recycling and Data Destruction protect the environment and your data with proven and trusted electronics recycling and data destruction services.

eResilience

eResilience

eResilience is a division of Referentia Systems, a pioneer in an ultra-secure information safeguarding technique known as “Enclaving”, in which data can be segmented and protected within a network.

HackHunter

HackHunter

HackHunter’s passive sensor network continuously monitors, detects and alerts when a malicious WiFi network and/or hacking behaviour is identified.

SecurityGate

SecurityGate

SecurityGate.io is the only Integrated Risk Management platform built for OT/ICS cybersecurity.

Alias Robotics

Alias Robotics

Alias Robotics is a robot cyber security company. We deliver cyber security solutions for robots and robot components.

Cyolo

Cyolo

Cyolo’s Secure Access Service Edge (SASE) platform securely connects onsite and remote users to authorized assets, in the organizational network, cloud or IoT environments and even offline networks.

AHAD

AHAD

AHAD provides cybersecurity, digital transformation, and risk management services and solutions to Government, Fortune 500, And Start-Up Companies in the Middle East region.

ECIT

ECIT

ECIT is your preferred provider of finance and IT services. We believe in the value of combining financial and IT services to streamline and improve the operation of your business.

Aliro Security

Aliro Security

AliroNet is the world’s first entanglement Advanced Secure Network solution.

Adili Group

Adili Group

Adili Group is a leading pan-African corporate advisory firm. We deliver tailored solutions in regulation and compliance, risk management, and improving business efficiency.