Cyber Security Training That Employees Don’t Hate

Uploaded on 2019-11-01 in JOBS-Training, FREE TO VIEW, TECHNOLOGY--Resilience

Most employees hate taking cybersecurity awareness training. It doesn’t have be that way. If you want your security awareness training program to be effective, address some of the most common user complaints.

Here are five common complaints of security awareness training and the ways to make your people like and engage with Cyber Training to make them love it.

1. Cybersecurity awareness Training is said to be Boring
It can be boring, at least the way most organisations do it. Make it more exciting, vary it, and make it a game.
Security awareness training videos that look like professional, Netflix-style episodes are the ones I’ve seen employees ask for more of.  Security awareness training companies do this sort of thing, or professional production companies will customise videos for your company. 

2. Employees don’t understand the importance of security awareness training
Most end-users don’t understand the importance of security awareness training.  Make sure that employees know how important security awareness training is to their own success and to the organization’s. If the organisation has been hacked, don’t hide the details. Let all employees know how it happened, what the hacker did, and how it could have been avoided. 

3. Security awareness training isn’t Personal
If you want to make someone care, make it personal. Don’t just train them for protecting your business. Let employees know you care about them and their families. Give them training and tools to help them be more cybersecurity aware at home. Employees who train their spouses, parents, and children in cybersecurity awareness will be one of your best defenders at work.

4. Security awareness Training isn’t timely
Make sure your security awareness training program is personalised, targeted to the user’s role, and appropriate for the time of the season. For example, don’t give training on how to avoid fake invoices and malicious wiring transfers to employees who don’t pay bills.  Make sure all employees are trained on how to avoid fake information requests for their personal tax identification information and that HR/payroll department employees receive training in how to avoid fake information requests from someone claiming to be their organisation’s tax processor. 

Give instructions on how to avoid fake gift card scams around Christmas. Instruct people on how to appropriately patch their systems and how to appropriately recognise their installed anti-malware programs so they can’t be fooled by a fake version of either.

5. Security awareness Training feels punitive
You’ve got to motivate people to take the training, but if you make it fun and different, you can motivate people to want to learn more. The gamification I talked about earlier is a good way to do it. For example, tell every employee who reports 100% of all real and simulated phishing emails for a year, that they will get an Amazon gift card. 
Make the amount enough so that they will care. Then tell them to watch a few videos to learn about what to be on the lookout for. Tell them every month they’ll get a different topic and that they’ll be tested on that topic and others in the following month. 

Companies whose cybersecurity awareness training programs use all these tactics have employees who are better, happier, and safer because of them.

CSO Online:       GoCyber:

You Might Also Read: 

UK Workforce Lacks Basic Cyber Training:

_____________
For free Cyber training information please contact Cyber Security Intelligence  

 

 

 

« Cyber Training For Every US Federal Employee
A £370m Investment To Boost AI In Britain »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Cyber Security Associates (CSA)

Cyber Security Associates (CSA)

Cyber Security Associates provides cyber consultancy and cyber managed services which help to detect, protect and educate against the ever-changing cyber threat.

Biscom

Biscom

Biscom offers solutions for secure file transfer, synchronization, file translation, and mobile devices, designed to deliver mission-critical reliability, streamline workflows and reduce costs.

Censornet

Censornet

Censornet's autonomous, integrated cloud security gives mid-market organisations the confidence and control of enterprise-grade cyber protection.

mmCERT

mmCERT

mmCERT is the national Computer Emergency Response Team for Myanmar.

DomainTools

DomainTools

DomainTools is the global leader for internet intelligence and the first place security practitioners go when they need to know.

SK IT Cyber Security

SK IT Cyber Security

SK IT provide services and solutions for cybersecurity and advanced information system engineering.

Armis

Armis

Armis offers the markets leading asset intelligence platform designed to address the new threat landscape that connected devices create.

GlobalPlatform

GlobalPlatform

GlobalPlatform’s specifications are highly regarded as the international standard for enabling digital services and devices to be trusted and securely managed throughout their lifecycle.

WWPass

WWPass

WWPass is a global cybersecurity company that provides password-less authentication and client-side encryption technology.

IQ4 - Cybersecurity Workforce Alliance (CWA)

IQ4 - Cybersecurity Workforce Alliance (CWA)

Cybersecurity Workforce Alliance, a division of iQ4, is an organization comprised of a diverse range of professionals dedicated to the development of the cybersecurity workforce.

SAM Seamless Network

SAM Seamless Network

SAM Seamless Network is a cybersecurity technology platform that protects the connected home, by tackling cyber security threats at the source.

Dataminr

Dataminr

Dataminr Pulse helps organizations strengthen business resilience with AI-powered, real-time risk and event discovery—and the integrated tools to manage responses.

Resemble AI

Resemble AI

Resemble AI is an innovator in Generative Voice AI technology and tools to combat AI fraud including audio watermarking and deepfake detection.

Manifest

Manifest

Manifest is a cybersecurity company dedicated to helping enterprises secure their software supply chains.

Planisys

Planisys

Planisys is a cybersecurity leader specializing in cutting-edge DNS security and email security solutions.

CertifID

CertifID

CertifID is the only company dedicated to fighting fraud for the real estate industry with an identity verification SaaS platform, insurance, and proven recovery services.