+ Reply to Thread
Results 1 to 4 of 4
  1. Senior Member
    Join Date
    Jan 2015
    Location
    Chicago, IL
    Posts
    996

    Certifications
    Too many MCPs and MCTS, MCSA: Security, MCSE: Security, MCSA: 2003, 2008, 2012, MCITP: EA, CISSP-ISSAP, SCS DLP, GREM
    #1

    Default Security awareness training for CEOs

    Anyone seen anything on that?

    Regular security awareness training is a hard sell for CEOs of large and rich companies. They tend not to think of themselves as regular people, and, to their point, their time is pretty expensive, so it's better not wasted on half-baked products.

    Anyone knows of a very good, short, to the point, of extremely high quality, CEO-fashioned, expensive security training?

    Just basic things -- check if the web-site has a cert, if it's trusted, don't accept suggestion to download and install "flash updates", how to avoid sketchy web-sites, how to recognize phishing, spear-phishing, whaling, CEO-phishing type of stuff.
    Reply With Quote Quote  

  2. SS -->
  3. Senior Member
    Join Date
    May 2006
    Posts
    2,029

    Certifications
    CISSP, CCSP, eJPT, ITIL,PA ACE,Qualys Certified Specialist, A+
    #2
    Quote Originally Posted by gespenstern View Post
    Anyone seen anything on that?

    Regular security awareness training is a hard sell for CEOs of large and rich companies. They tend not to think of themselves as regular people, and, to their point, their time is pretty expensive, so it's better not wasted on half-baked products.

    Anyone knows of a very good, short, to the point, of extremely high quality, CEO-fashioned, expensive security training?

    Just basic things -- check if the web-site has a cert, if it's trusted, don't accept suggestion to download and install "flash updates", how to avoid sketchy web-sites, how to recognize phishing, spear-phishing, whaling, CEO-phishing type of stuff.
    I'd recommend this. https://www.knowbe4.com/pricing-kevi...eness-training
    The solution is calldd KnowBe4.
    I just recently had a demo for it and received a 2 week trial. The solution has exactly the training you need, you can cater it to your audience for regular users to IT or developers or high management. Seems to be relatively cheap also. It's a SaaS solution and very well designed. You also get to conduct phishing campaigns from the platform and create your own social engineering campaign or use the templates they have. Cool thing is that they introduce content very often and relative to the news out there. Has tons of metrics too in order to judge how well users are identifying malicious emails etc. Give it a try. We will migrating to this soon.
    Reply With Quote Quote  

  4. Senior Member
    Join Date
    Jan 2015
    Location
    Chicago, IL
    Posts
    996

    Certifications
    Too many MCPs and MCTS, MCSA: Security, MCSE: Security, MCSA: 2003, 2008, 2012, MCITP: EA, CISSP-ISSAP, SCS DLP, GREM
    #3
    We have it and it sucks for the purpose outlined in the post.

    There are just a few modules on what would be interesting for top management and they all full of fluff and irrelevant. The one on CEO fraud starts with a long introduction and a hypothetical situation in which a small real estate business owner who hires an accountant gets a call from them and they say that supposedly the owner asked them to transfer money in both SMS and email. For CEOs of multi-million or billion companies it's hard to feel in such an owner shoes IMO and it's too lengthy anyways. Majority of knowbe4 modules could have "for dummies" labels on them, I don't think top management of larger companies can appreciate that.

    That's why I'm looking for something specifically designed for this type of audience.
    Reply With Quote Quote  

  5. Senior Member
    Join Date
    May 2006
    Posts
    2,029

    Certifications
    CISSP, CCSP, eJPT, ITIL,PA ACE,Qualys Certified Specialist, A+
    #4
    Really? That's interesting, I'd have to lool into it again then when the trial starts. We are in a tight spot as our current solution is being retired and this was what was presented to us as the replacement. Will follow this thread too then. Thanks for the heads up.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks