Take a moment and think about all of the security features that are used to keep your organization’s network safe. Passwords and firewalls help keep the bad guys away from your vital information. But all of these security measures don’t mean a thing if someone clicks on a malware link inside an email.
As phishing attacks have grown, so too has the emphasis on Cybersecurity. One tool that many organizations have begun to deploy is security awareness training as a way to educate employees. Having knowledge of malware and phishing is as important as having proper antivirus and firewall protection.
How does security awareness training work?
A security awareness training provider will begin the training process with an email exposure check that shows which email addresses within an organization’s domain are being exposed to spear-phishing attacks on the Internet. This service looks deep into websites, Word, Excel and PDF files that are on the Internet. By performing these tests, business owners and managers can see which employees are the most susceptible to phishing emails. Training modules soon follow to teach employees what to look for.
Statistics show that it works
Security awareness training helps turn your employees into your organization’s first firewall. Through training, employees become the best defense you can have. We aggregated the numbers and the overall Phish-prone percentage dropped from an average of 15.9 percent to an amazing 1.2 percent in just 12 months. The combination of web-based training and frequently simulated phishing attacks really works.
The focus on Cybersecurity has increased in importance because the occurrences of malware and phishing are now a global epidemic. According to Symantec, $2.3 billion is spent globally on ransomware prevention and recovery. In 2015 alone, 430 million new unique pieces of malware were discovered and over 80 million records were exposed. All industries are vulnerable as hackers continue to expand their target industries and areas.
It’s important to remember that everyone is a target of phishing attacks. These attacks happen every day, but the good news is they can be prevented. Proper training is great a great way to prevent attacks, but equally important is having a proper backup and disaster recovery plan in place. Nothing is bullet-proof in IT, but being prepared for any circumstance can help save money and downtime in the event of a disaster.
For more information about security awareness training for your organization, contact your Yeo & Yeo advisor or Jeff McCulloch, President of Yeo & Yeo Technology, jefmcc@yeoandyeo.com or 800.607.1446.