Information Security Awareness

Slides:

Advertisements

Similar presentations

HIPAA Security.

Advertisements

An introduction to the State’s Encryption Service State of Minnesota Office of Enterprise Technology and Department of Human Services.

Meet Grace! Grace is our newest team member! She is here to make it easier to keep track of all your HR related documents digitally. Grace will always.

How to View User Counts on Sharp Copiers with Account Controls Enabled.

1 HIPAA Education CCAC Professional Development Training September 2006 CCAC Professional Development Training September 2006.

1.3.1.G1 © Family Economics & Financial Education – Revised October 2004 – Consumer Protection Unit – Identity Theft Funded by a grant from Take Charge.

GPC Print Online Ordering System What is it? How do you use it? What are the benefits?

8 Mistakes That Expose You to Online Fraud to Online Fraud.

July 11 - September FFIEC Central Data Repository Bank Enrollment.

Security Awareness Lloyd Guyot – Steelcase Ed Jaros – Tenundra Inc. July 17, 2003.

Login to University Web Site Enter in to login in which click Institution login.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

October is National Cyber Security Month OIT and IT providers are launching an awareness campaign to provide tips and resources to help you stay safe online.

CIS101 Introduction to Computing Week 05. Agenda Your questions CIS101 Survey Introduction to the Internet & HTML Online HTML Resources Using the HTML.

Social Engineering PA Turnpike Commission. “Social Engineering is the practice of obtaining confidential information by manipulation of legitimate users”

Start the slide show by clicking on the "Slide Show" option in the above menu and choose "View Show”. or – hit the F5 Key.

On-Line Database Placement Application Tutorial. How to Change Your Information On York’s System.

Paying your MCCFA Dues via our new Website Go to our new website: (you may need to clear your browser cache)

Start the slide show by clicking on the "Slide Show" option in the above menu and choose "View Show”. or – hit the F5 Key.

Start the slide show by clicking on the "Slide Show" option in the above menu and choose "View Show”. or – hit the F5 Key.

COIS11011 Resource Package. How can MyITLab help you? Online training resource to improve your skills in Office Applications Online training resource.

Welcome to CATS5000 Custom Accounting & Tax System for America’s Truck Driver.

Start the slide show by clicking on the "Slide Show" option in the above menu and choose "View Show”. or – hit the F5 Key.

PHISHING AND SPAM INTRODUCTION There’s a good chance that in the past week you have received at least one that pretends to be from your bank,

Printing Employment Applications Step-by-step instructions for accessing applications through Louie.

Universal Service Administrative Company Schools and Library Division Web Site Tour and Data Retrieval November 4,

Online Training for TEXAS TECH UNIVERSITY and TEXAS TECH HSC Hiring Managers Employment Office April 2003.

Start the slide show by clicking on the "Slide Show" option in the above menu and choose "View Show”. or – hit the F5 Key.

TMK Agent training only. Not for sales use. Agent Orientation Luke Gilliam Vice President TMK Agent training only. Not for sales use.

Presentation Title runs here l 00/00/00 How to Access MasteringPhysics 1.

Chapter 9 Sending and Attachments. 2Practical PC 5 th Edition Chapter 9 Getting Started In this Chapter, you will learn: − How works − How.

Personal Online Safety Information Security Systems Community Outreach Program McKinley Middle School April 23, 2013.

Protecting Your Identity: Information Security Basics Presented by:Barbara D. Kissner SVP & CIO International Fidelity Insurance Company March 18, 2014.

TMK Agent training only. Not for sales use. Agent Orientation Luke Gilliam Vice President TMK Agent training only. Not for sales use.

Basics What is ? is short for electronic mail. is a method for sending messages electronically from one computer.

Complete Ordering System for Promotional Literature and Samples Quick Reference and Training Guide.

Catherine Metcalf | Dec U.S. Department of Education 2015 FSA Training Conference for Financial Aid Professionals The FSA ID – Resources for Assisting.

On-Line BankCard Center Presentation Cardholder Role During the Presentation click the mouse on this button to move back a slide During the Presentation.

College of Pharmacy Leave System. How to login to the leave system Visit the website mpl/empli2.php

OCTOBER IS CYBER SECURITY AWARENESS MONTH. October is Cyber Security Awareness Month  Our Cyber Security Awareness Campaign focuses on topics such as.

Online Recruiting System Hiring Manager Presentation This presentation will take about 15 minutes. Click on your mouse to go to the next slide OR click.

BASICS. Objectives Choose an provider Fill out an online form Learn about usernames and addresses Learn about Capcha Explore the organization.

Technological Awareness for Teens and Young Adults.

JANELL LAYSER Training Manual. AWARENESS! Social Engineers are out there, and everyone should be prepared to deal with them! They can contact you by phone,

Labor 101 Protocol and Procedures. New Hire Assessment Form As soon as you identify a need to hire, complete this form and submit it to Kim or Colette.

Instructions for Website How to register: 1. Click “Register” under the banner 1.

Office 365 Help Desk Troubleshooting Guide

Arizona’s Fly Fishing Portal

PHISHING Hi, The comms team asked if I could refresh everyone about Phishing after a fairly successful phishing circulated last week that led to.

Course Coordinator Training

Services NAELA Provides Chapters

Assess Survey Invitations

Report Phishing Forward phishing s to

SECURE DELIVERY OF DIGITAL QUESTION PAPERS (SEQUEL)

Cybersecurity Awareness

ISE Website Encourage International Service Employees to regularly check the website to view financial reports (e.g. payroll information), download.

The prudent man looketh well to his going.

KnowBe4 is the world's most popular integrated platform for awareness training combined with simulated phishing attacks.

2009 Proprietary and Confidential

Report Phishing Forward phishing s to

Instructions To Play the Cybersecurity Magic 8-Ball game, go to the “Slide Show” menu and select the “From Beginning” icon. Once the game launches, click.

Protecting Yourself from Fraud including Identity Theft

RB Controls Clocking in and out follow ups inner office s

Setting up a Gmail Account & Safety Kamlesh Singh Bisht IT Specialist.

Premier Employee Program Version 4.0

Internet Safety – Social Media

RB Controls Clocking in and out follow ups inner office s

Google Account Recovery Process

Presentation transcript:

Information Security Awareness

Protective’s Awareness Program New employee LMS training and Annual employee LMS training Quarterly lunch and learn webinars for all (includes road shows) Posters & Swag Awareness page on company intranet site National Security Institute’s monthly SECURITYsense “Information security awareness for every employee” SANS Technology Institute’s monthly OUCH! “A Security Awareness Newsletter for Everyone” Semi-monthly browser-based news and quizzes on the latest security awareness topics Phishing simulations Phishing tournament Information Security "Promoting Security Through Awareness"

Phishing Program Information Security Forward suspicious emails to phishing@protective.com Cofense PhishMe Simulator Some emails are PhishMe Simulator and some are “build your own” All three types of phishing emails are used (attachment, click, data entry) Four different phishing scenarios per campaign Program started with quarterly phishes in 2015 Today, every employee and contingent worker with a company email address receives one phishing scenario monthly 2019, every employee phished once per month and a spear phish to a targeted group once per month Total mailbox recipient count was 2,800 in 2015 and is currently over 3,400 (20+% increase) Program started with easier “toss ‘em a bone” type emails, then progressively got more difficult as the program matured Information Security "Promoting Security Through Awareness"

Phishing Campaign Results 05/2015 – 10/2018 Directed phishing – phishing targeting specific departments and executives/executive types Information Security "Promoting Security Through Awareness"

Phishing Emails & Hooked Rates Phishing Scenario Title Year % Hooked File from scanner 2015 19.5 Package delivery notice 19.7 Breaking News 4.2 Funny cat pictures 2.8 Traffic citation notice 10.6 Mailbox exceeds authorized limit 6.4 Unauthorized internet access 6.5 Background check was run on you Facebook timeline posting 2016 1.1 Important notice: W-2 Form 6.1 Time off request (negative PTO balance) 36.8 Order confirmation 8.7 Employee raffle 21.2 Digital fax attachment 8.8 Pokemon Go - company policy 6.3 Unpaid invoice 1.7 Password survey 2.0 eCard alert 11.0 Suspicious bank account activity 2017 2.3 Notice from board of accountancy 3.1 Jury duty final notice 0.7 Blank message 0.5 Customer feedback survey 1.8 iPad order 1.4 Information Security "Promoting Security Through Awareness"

Phishing Emails & Hooked Rates Phishing Scenario Title Year % Hooked Computer refresh program 2017 15.3 Attached resume 3.8 Failed print job 6.3 Download and sign 2.0 Unauthorized internet access 3.2 Compromised applications on your desktop 5.0 Inactive email account 2018 Your order has been shipped 6.2 Food truck coupon 0.5 “Equafax” 0.9 Somone has your password 1.7 Employee raffle 8.5 PayPaI order tracking 2.5 Final version of the report 0.7 Forgot attachment (2 part phish) 7.2 New voicemail attached 11.7 Verify your email address 1.0 Recruitment plan attached 3.7 CONFIDENTIAL - Please don’t leak *1.5 Failed email delivery notice *8.1 Office gambling policy *17.0 I hit your car *4.9 Information Security "Promoting Security Through Awareness"

There’s always someone to train! Information Security "Promoting Security Through Awareness"

Questions? Information Security "Promoting Security Through Awareness"