Engaging Your Stakeholders in Your Security Awareness Training Program
In order to ensure that your company gets the most value out of any program, it is crucial to have buy-in from your stakeholders.
We recommend sending this email out to any stakeholders (C-level employees, Director of IT, etc.) before you send out your initial employee-wide baseline phishing test. That way, any questions can be answered and your stakeholders will be readily prepared for any employee questions that arise once the baseline assessment is administered.
Be sure to review the text in red prior to sending to ensure the content matches your unique security awareness training plan.
As you all know, increasing our company’s security awareness is imperative to the safety of our organization. I am excited to announce that we have partnered with KnowBe4, the world’s leading Security Awareness Training company, to help us create a “human firewall” against malicious emails that land in our employees’ inboxes. This state-of-the-art program consists of training campaigns paired with simulated phishing exercises that everyone in the company will take part in.
We will begin with sending out a blind simulated phishing email in the near future in order to get an accurate measure of our company’s vulnerability to phishing attacks. I will then schedule employee-wide training followed by bi-weekly phishing tests to all employees. The training is engaging and does not need to be completed in one sitting. There are various courses on security topics that our organization will be assigned, but everyone will take the General Security Course, which lasts about 45 minutes. Throughout the year, certain departments will get different training courses based on their areas of specialization.
Our end goal is to increase employee security awareness and decrease the number of employees who click on malicious emails. We will also be communicating to all employees on the best way to report suspicious emails they receive after the baseline test is completed.
I am excited to have this new program in place and I welcome any questions or concerns.