A company can invest a substantial part of their cyber security budget into perimeter defence, however, a user who unknowingly clicks on a malicious email can negate this whole expenditure. Therefore, it’s essential that users are educated on the risks that they face in this digital world, and how it can impact both the organisation and the individual.
This can be achieved through a proactive security awareness training program, showing users types of attacks, how they work, what their targets are and how to spot them.
Arming users with this knowledge will make them more resilient against cyberattacks and promote a culture of cyber awareness. Nowadays, many organisations do not have the capability to manage an Information Security Awareness Training (ISAT) program on their own, due to resourcing issues or a lack of expertise. As a result, this is a commonly overlooked practice leaving a major gap in the organisation’s security posture.
Content Security has developed the Managed Cybersecurity Awareness Program (MCAP) to help businesses fill this gap. As part of this service, we provide a fully managed security awareness training platform to be customised based on your organisation’s needs.
Our consultants are in charge of deploying and managing the platform, running training and simulations and providing you with monthly reporting on the findings along with recommendations. Our process includes a consultative approach of working with your organisation’s teams to ensure that you gain the most from our service. The key components of the service include:
Employees are enrolled in short, interactive training modules every month. These modules are based on different threat vectors and topics, ultimately uplifting users’ knowledge on a variety of threats and showing them how to identify and defend against attacks.
Our business-specific reports summarise staff performance on training modules and simulated attacks. On top of this, we conduct a debrief session post-delivery of simulation attacks to discuss the report findings and further, to deliver personalised recommendations.
We send customised company-specific phishing emails to your staff, testing to see if they click on the links and proceed to enter their credentials. This helps us gauge the cyber security culture maturity within your business and identify where an uplift is truly needed.
As part of the continuous education delivered to your organisation, we automatically enrol users who have failed a simulated attack, i.e. they have provided personal or company credentials via a phishing email sent from the MCAP platform.
We understand how difficult it is for businesses today to create and manage a training program alone. Let our qualified consultants guide you in the process.
All training modules and simulated attacks, as well as user reporting on education and results are retained and managed through a single centralised cloud-based platform.
Our qualified security consultants are in charge of deploying and managing the platform as well as running testing and training. We take a partnership approach here, working with your team to ensure you get the most out of the platform.
We roll out regular, customised phishing attacks alongside training assignments, measuring performance as well as the effectivity of the training. These emails are tailored towards the type of user that is being targeted and reinforce the topics covered in the platform.
As experts in our field, we have the responsibility to guide our clients on the best path towards cyber security success. This means setting out a tailored training strategy, based on your sector, business and user requirements, as well as our industry expertise.
We are an Australian IT security integration and consultancy firm with offices in Sydney, Melbourne and Brisbane. Founded in March 2000, we focus on protecting our customers’ brands, reputations and bottom-lines from the evolving threat and regulatory landscapes. We do so by partnering with key technology vendors and providing practical expertise on good governance, security architecture, secure cloud, advanced forensics and more.
Our industry expertise means that we not only design and implement a comprehensive range of security solutions, but offer these as fully integrated, managed services for our customers. MCAP is one such service, launched in March of 2020. It fills the gaps for small businesses that lack the bandwidth to run their own programs and for larger enterprises that a need more frequent, formalised style of training.