Cybersecurity awareness training is targeted primarily at the non-IT staff. This is vital because about 80% of cybersecurity incidents happen due to human error. Training the non-IT staff to look for and protect against such incidents helps cut down the single largest possibility of these incidents occurring and damaging your business.

The training avoids the prevalent approach of existing similar programs like being too technical, long-winded and focusing more on the negative aspects of the incidents. The focus is kept on maintaining a positive, motivational approach to changing employee behaviour. It combines this with "gamification" of the learning techniques, practical demos with simulated attacks to get an hands-on experience of defending against cyber attacks.

This yields the following benefits:

  • The learning process is more engaging because of the use of gamification techniques. Lessons learnt this way are retained better and become ingrained in the behaviour.
  • Simulated attacks and defence exercises help reinforce practical and timely responses to cyberattacks.
  • Creating an environment where everyone cares about security ensures that cybersecurity becomes second nature and not just a set of rules to be followed.
  • The training also provides tools to measure employee skills and assessments of staff attitudes to cybersecurity in their daily work.

Solution implemented using: