Boost the effectiveness of your security awareness program with free tools from the InfoSec Institute Security Awareness Resource Center. Check back frequently — new resources are added every month!
Phishing: The security threat that just keeps swimming. Our new Marine Lowlifes poster series will warn your users about the tactics hackers use to steal protected information over email. Every poster is short and to the point to keep messaging effective.
Lisa Plaggemier, security education guru will share proven persuasion techniques to help you “sell” employees on awareness training and ultimately influence security behaviors.
According to the Department of Education, 100 million school and business private records were sold on the black market in 2017. They also found 63% of organizations experienced ransomware attacks last year — a threat carrying serious legal ramifications for schools of all sizes. That’s why Pete Just, Metro School District of Wayne Township CTO, implemented a five-step security awareness program to keep his district ransomware free.
Download this Gartner report to learn how Security Champions can help you advocate your security awareness message and model security best practices among peer groups. Mobilizing a squad of security champs will improve the reach and integrity of your team’s security awareness efforts and help you instill good security hygiene across all levels of your organization.
We’re pleased to be named to the Customers’ Choice Zone! Free from vendor influence, Gartner Peer Insights research reports are based on enterprise professionals’ software and service reviews and first-hand experiences through various stages of the IT life cycle – from evaluation through deployment.
New data from Osterman Research shows two-thirds of organizations reported a security incident in the past 12 months — a vulnerability researchers link to inadequate workforce security education. Download Osterman’s new report for 12 security awareness best practices you can implement today.
Business email compromise (BEC) is a serious threat for businesses of all sizes. This tip sheet will teach users how to spot a BEC attack in the wild.
Teach your users how to avoid these six common phishing scams.
This tip sheet shares nine actionable ways your users can keep spam out of their inbox.
Share this guide with your users to help them avoid malicious email attachments.
Teach your users what spam and phishing emails have in common — and also how to tell them apart.
Join Zach Luze, CISSP, CISA and CISO at Tennessee State University, to learn how he uses the SecurityIQ PhishNotify email plugin to increase awareness and stay ahead of email-based security threats at the college.
CTO Pete Just, a former teacher, uses SecurityIQ to deliver personalized security awareness training to employees who need it the most. We met with Pete to learn more about his approach and how he’s used SecurityIQ to keep his district’s data secure.
Working out of Savannah, GA, Technical Financial Solutions (TFS) provides comprehensive IT auditing services to hospitals, insurance companies and nonprofits. Phishing simulations have been part of their service offering for years, but the company recently added SecurityIQ security awareness training to help their clients both identify — and correct — risky employee behavior.
IT Application Systems Supervisor Tyler Pate joined the Arkansas Securities Department team last year. As a former IT Security Analyst for the Arkansas Scholarship Lottery, Tyler knew increasing workforce security awareness would improve the Department’s overall security strategy.
To educate its remote team about the risks of security threats like phishing, Spikeball’s COO tasked Event Operations Manager Logan Cornelius with finding a security awareness training platform in early 2018. We met with Logan to learn why he selected SecurityIQ as Spikeball’s awareness training platform and how he’s since used SecurityIQ to drop his team’s phishing susceptibility rate by 30% in just six short months.
This particular company previously included security training as part of their new hire onboarding process, but wanted to go one step further to ensure stored PHI was protected year-round. With every unauthorized PHI disclosure considered a HIPAA violation, the company saw awareness training as an important risk reduction tool.
A client since 2017, OLX used the SecurityIQ awareness training platform to drop it’s employee phishing susceptibility rate more than 90% in six months.
To help secure the company against security threats like phishing emails and keep sensitive data safe, Car-Mart Security Engineer Michael Prestien started shopping around for a workforce security awareness training platform to fit his team’s needs.
Learn how to tailor your security awareness training program to your organization's unique culture and needs.
Listen as security leaders from InfoSec Institute and DarkMatter share business email compromise (BEC) mitigation steps you can take now to protect your organization from nefarious actors.
The General Data Protection Regulation (GDPR) has struck fear into compliance officers around the world. Learn how your organization can comply with actionable tips from UK-based security expert, Susan Morrow.
How to use established behavioral science to get more from your security awareness training initiatives.
Educate your end users about the growing phishing threat with this infographic.
Intelligent personal assistants (IPAs) offer convenience, but the cost may be your security. Learn more about the security risks of IPAs in this infographic.
Strategies for staying compliant, securing endpoints & increasing security awareness in a resource-constrained industry.
Five best practices for securing intellectual property, assets & infrastructure in a rapidly changing environment.
Our dependency on energy within homes and businesses creates a critical infrastructure Achilles’ heel. Today’s grid presents hackers with a “global kill switch,” and the ability to leave thousands of people — or even entire countries — without energy.
Join InfoSec Institute’s Solutions Manager Emma Waite and Client Success Manager Sonja Christoffersen for practical tips to help you create a lasting culture of security awareness. Emma and Sonja work with clients around the world, helping them design and administer training programs for teams of all sizes.
Learn the five types of Business Email Compromise (BEC) scams, how they work and what you can do to keep your organization safe from attack.
Event-Activated Learning integrates with your endpoint protection solution to deliver awareness training to employees based on their involvement in security-related events. View the webinar to see InfoSec Institute’s CEO Jack Koziol demonstrate Event-Activated Learning and share how it can link end-user awareness training to actual security events in real time.
Our award-winning awareness posters and newsletters can be used as-is or customized to your style. Communication resources include both program launch and progress report email templates to help you launch your program quickly and effectively.
Security-naive employees are a massive vulnerability — 28% of data breaches start with human error. Learn how security awareness training can transform your faculty and staff from security threats into data protection assets in this free guide.
Financial services faces unique security challenges: endpoint security and insider threats are two of the biggest threats facing the sector today. SecurityIQ awareness training addresses these challenges head-on with role-based training for your employees.
Colleges, universities and schools host a wealth of personal data and intellectual property. Through email-based attacks like phishing, hackers aggressively target education to harvest social security numbers, birth certificates and other valuable data. SecurityIQ awareness training teaches faculty and staff how to identify hacking attempts and keep data secure.
Healthcare is a prime cybercriminal target. Stolen protected health information is worth thousands of dollars on the black market — and is often easily acquired through email-based attacks targeting your unsuspecting employees. SecurityIQ™ awareness training will teach your employees how to identify hacking attempts and keep protected health information secure.
Get insider tips on security policy development and management from security expert Susan Morrow
An infosec leader’s guide to effective security policy development
Effective tools for measuring security awareness program impact, tracking workforce behavior and proving an organizational value
An overview of GDPR’s impacts on data controllers and processors working with citizens in the EU
An introductory guide to security awareness training planning, implementation, management and evaluation
Effective methods for communicating the value of security awareness training outside of the IT department