Commonly defined as the art of exploiting human psychology to gain access to buildings, systems or data, social engineering is evolving so rapidly that technology solutions, security policies, and operational procedures alone cannot protect critical resources.
A recent Check Point sponsored survey revealed that 43 percent of the IT professionals surveyed said they had been targeted by social engineering schemes. The survey also found that new employees are the most susceptible to attacks, with 60 percent citing recent hires as being at "high risk" for social engineering.
A combination of social engineering assessments, which stage mock attacks on employees for the purposes of training, and a library of in-depth training modules to educate and reinforce concepts, work together to deliver measurable employee behavior change. Employees who fall for mock attacks are very motivated to learn how to avoid real attacks.
The social engineering training module explains the psychology behind these attacks, and gives practical tips for recognizing and avoiding them, which employees apply immediately during the training to lengthen retention.
The social engineering training module is the latest module available in Wombat's Security Training Platform that helps companies foster a people-centric security culture and provide security officers with effective education tools.
With the platform, security officers can:
- Take a baseline assessment of employee understanding
- Help employees understand why their security discretion is vital to corporate health
- Create a targeted training program that addresses the most risky employees and/or prevalent behaviors first
- Empower employees to recognize potential threats and independently make correct security decisions
- Improve knowledge retention with short interactive training sessions that work easily into employees' busy schedules and feature proven effective learning science principles
- Monitor employee completion of assignments and deliver automatic reminders about training deadlines
- Show measurable knowledge improvement over time with easy-to-read reports for executive management.