ASA Central Network

communities_1.jpg
  • 1.  Office Security Awareness Training

    Posted 07-28-2022 14:04
    I'm looking for a good Security Awareness Training system for our staff. 

    Can anyone recommend or share what you are doing with your team? With all the scams and treats out there I really want our team to know what to look for and be able to recognize phishing emails. 

    Thank you for your help!

    ------------------------------
    Lisa Zand
    President
    APS Employment Services Inc.
    Saginaw MI
    (989) 921-0358
    ------------------------------
    Avionte post ad


  • 2.  RE: Office Security Awareness Training

    Posted 07-29-2022 01:13
    Hi Lisa - 

    I would start with your IT vendor.  Our IT vendor offers a Phishing training where one month they try and get our staff to click on an email/link/etc. & then the next month there is a training/info topic that they send out.  They go back and forth every month & then send me info on who clicked on a link they should not have, etc. 

    Have a good one!

    ------------------------------
    Carl Rudolph, CSP
    Owner/General Manager
    Champion Personnel
    Reading - Lebanon - Pottsville
    610-741-5260
    ------------------------------

    Avionte post ad


  • 3.  RE: Office Security Awareness Training

    Posted 08-01-2022 09:39

    Hi Carl,

     

    Who do you use for your IT vendor?

     

    Jennifer Conrad

    Birch Agency | President, Director of Midwest Region

    Office: 727-781-7812

    Fax: 727-647-0704

    jconrad@birchagency.com

    www.birchagency.com

     




    Avionte post ad


  • 4.  RE: Office Security Awareness Training

    Posted 08-01-2022 23:39
    Hi Jennifer - 

    Laughing Rock Technology - local company to me, but they work with clients all across the country. 
    Contact is Tyler McCauley  - tmccauley@laughingrock.com - or phone 610-678-1978

    I misspoke a bit on details of program.  They actually send out test emails 1 week a month to all of our employees.  They only send out a couple of emails each day and they are slightly different so everyone doesn't get the same email at the same time and then start asking each other questions.  The program tracks who read the email and then who clicked on a link.  If someone clicks on a link, then the training kicks in... basically they get a message saying they clicked on what would have been a bad link had it not been a test, and then gives them some training pointers/reminders.  For example, our most recent campaign was last week - 17 emails were sent out (1 to each person in our organization) - 3 people read the emails - nobody clicked on a link in their email. 

    Again, this service comes with my monthly IT service contract. 

    Let me know if you have any other questions or need anything else.  

    Have a good one!

    ------------------------------
    Carl Rudolph, CSP
    Owner/General Manager
    Champion Personnel
    Reading - Lebanon - Pottsville
    610-741-5260
    ------------------------------

    Avionte post ad


  • 5.  RE: Office Security Awareness Training

    2020 Staffing World Attendee
    Posted 07-29-2022 08:28
    Talk to Arctic Wolf - they offer that service as well as being a full SOC (Security Operations Center.)
    Good luck
    Susie  



    Susan C. Dietrich

    Principal

    TOPS Staffing, LLC.

    600 Davidson Road, Pittsburgh, PA 15239

    (o) 412-798-0779    (c) 412-897-2224    (f) 412-573-0796  • (d) 412-701-9001

    susan@topsjobs.com   susan.c.dietrich (skype)    www.topsjobs.com





    Avionte post ad


  • 6.  RE: Office Security Awareness Training

    Posted 07-29-2022 18:54
    Hi Lisa, 

    Black Hat USA provide trainings and they also host an event in Las Vegas called Def Con 2022 scheduled for August 6-11 + virtual. https://www.blackhat.com/us-22/defcon.html?_mc=sem_bhus_sem_bhus_x_tspr_Google_defcon30_bhusagcompetitvedefcon30_2022&gclid=Cj0KCQjwio6XBhCMARIsAC0u9aFeh3syNOhC9IbfAqGJN5UNNaWinPp7crZgtyzZFZFbJque49SbFbAaAvsLEALw_wcB

    Best of luck to you as you expand on your security. 

    Venessa Anderson 
    Monster.com

    ------------------------------
    Venessa Anderson
    Monster Worldwide Inc.
    ------------------------------

    Avionte post ad


  • 7.  RE: Office Security Awareness Training

    Posted 08-02-2022 09:33
    Proofpoint has a good email security training program that runs simulations and educates those who need it. If you happen to use Webroot for an antivirus, they have a more affordable cyber security training program for $1000/year i believe. I think they are similar, in that they both send fake phishing emails and if users click on them, it forces them into a cybersecurity training program.

    You could do a DIY cybersecurity awareness program in-house too - Ask users to share any suspicious emails with you, then send out any new types of phishing methods as they come with a screenshot of the email highlighting what to look for. Things like the email asking you to "reset your Office 365 password" is from Joe@somemadeupcompany.com, if you expand the from field and check. Or hovering over any hyperlinks (without clicking) so it will show you the URL it will bring you to. Is it to thesiteyouwereexpecting.com? if not, likely a scam. Send these out every few weeks with as little non-essential text as possible in there. We all get a ton of emails, so short and concise is key.

    Best,
    Dave Gudek
    Techneeds




    ------------------------------
    Dave Gudek
    IT Manager
    Techneeds LLC
    Salem NH
    (603) 898-3000
    ------------------------------

    Avionte post ad