Here is a sample email you can send to users after they complete training. We recommend that you modify it to fit your organization's culture and requirements.

Hi all,

Cybercrime is getting more serious by the month. Hackers are getting smarter about tricking people into clicking on fraudulent links or opening up malicious attachments in emails.

It can happen to you personally on your own computer and email as well. As you know, our company has decided that it is very important that everyone gets comprehensive security awareness training, which you have recently completed. We need to defend our organization against cybercrime, and security is everyone’s job.

Now that you have completed your initial training, we will continue to train you by regularly sending out simulated phishing tests so you can practice the skills you learned as part of your training. Be on the look out for these in your inbox and check each email for Social Engineering Red Flags.

Remember to check all seven areas of the emails you receive:

1. The “From:” line
2. The “To:” line
3. The “Date:” line
4. The “Subject:” line
5. Attachments
6. Hyperlinks
7. Content of the email

You are the last line of defense to keep our organization safe! Thanks for your cooperation.