Security Magazine on Effective Phishing Training to Prevent Security Concerns, Tips to Prevent Phishing Attacks
Reducing Security Concerns: Hikvision Outlines Examples of Phishing
The Security magazine article, "When It Comes to Employee Security Awareness Training—Should You be Phishing or Teaching?” offers tips to address security concerns related to phishing emails in the workplace.
From the article: “Testing is considered a valid tool to evaluate knowledge and performance after a learning experience has occurred. However, it is not an effective tool to introduce and reinforce the learning itself. In fact, in order to validate a test, it should cover more than one phishing attack scenario. One phishing simulation, which is the common practice with many vendor solutions, will not provide any significant data about risk level or awareness status.”
The article offers several tips for preventing phishing attacks by creating an effective training program:
- Communicate clearly and fairly with employees about any phishing simulation program—where employees are sent a simulated phishing email to test if they can identify it as a threat—and share clear information about the security concerns related to phishing emails.
- Provide immediate feedback if an employee clicks on a phishing simulation to provide the most effective feedback to change future behavior.
- Update phishing simulation/testing emails routinely as hackers’ tricks will change over time.
For more information, visit this link.
For more tips to reduce phishing-related security concerns, check out these Hikvision blogs: