Human error and mistakes is a major factor in cyber security breaches, where trusted but unsuspecting insiders are to blame. From phishing emails to lost or stolen devices, to mistakenly confidential data sent to insecure home systems or stored on the public clouds, such mistakes can be very costly for a company. The highest risks within an enterprise well-intentioned IT admins, whose complete access to company IT backbone and infrastructure can turn a small mistake into a catastrophic incident.
InfoTransec’s security awareness training approach is a layered and proactive model based on industry’s best practices and standards while combining real life and examples with elements of security frameworks such as ISO 27001, PCI-DSS (Payment Card Industry Data Security Standard), and regulations such as Privacy laws (PIPEDA and CASL).
We all have suffered enough by static PowerPoint presentations many times, and our years of training experience combined with the latest training trends has allowed us to deliver may successful training sessions without overwhelming technical and nontechnical audiences. This approach has inspired us to create security awareness trainings that are fit for use and based on specifics of each industry, and most importantly are entertaining, effective and memorable. We believe a good story is worth a thousand training sessions, so we create stories that apply key learning points to each specific working environment. InfoTransec’s security training stories explain potential threats, as well as how and why policies and procedures need to be complied with and what the expected corporate behavior should be. Key messages in our stories are based on latest cyber threat vectors and real life and comprehendible examples where the employees and users can connect to them easily.
At InfoTransec we believe that the most effective defenses are designed based on vigilant cultures. We have experienced that companies who promote security and vigilance culture among all level of employees have a higher chance of resiliency against newly developed cyber threat Tactics, Techniques and Procedures (TTPs).