Citadel Information Group

  • Home
  • About Us
    • About Citadel
    • Who We Are
    • When To Call Citadel
  • Services
    • Overview: Delivering Information Peace of Mind ® to Business and the Nonprofit Community
    • Citadel’s Information Peace of Mind ® Program
    • Assessments and Reviews
    • Information Security Policies and Standards
    • Secure The Human
    • Phishing Defense Training
    • CCPA and Defendable Security Procedures and Practices
    • Privacy: Information Inventory / Data Mapping
    • Security Management of the IT Network / Infrastructure
    • Incident Response / Business Continuity
    • Secure Application Development — Learn By Doing
    • Litigation Support
    • Keynotes
    • Client Success Stories
  • Blog
  • Resources
    • Information Security Library
      • Citadel Guides
      • Awareness Posters
      • For Boards and the C Suite
      • Cybersecurity Law
      • Cybersecurity Surveys
      • HIPAA HITECH
      • Insurance and Risk Management
      • National Cybersecurity
      • Online Bank Security
      • Payment Card Industry Data Security Standard
      • Personal Cybersecurity
      • Securing the IT Network
      • Helpful Links
    • Blogs
      • Cybersecurity Blogs
      • Leadership and Culture Change Blogs
  • Contact
You are here: Home / Overview: Delivering Information Peace of Mind ® to Business and the Nonprofit Community / Phishing Defense Training

Phishing Defense Training

Phishing is a business risk

Social engineering is a psychological manipulation of people into performing actions or divulging confidential information. It is a type of trick for the purpose of information gathering and most times plays on your emotions. Phishing is the act of falsely claiming to be an established, legitimate company or claiming to be an authorized person with the intent of scamming an unsuspecting person into providing information or access to a computer system.

Most commonly found in the form of an email message, phishing is the most common and very effective way to steal data.

In the dangerous world of cyber security, statistics show that people are still the weakest link in securing information. And that includes all people at all levels within an organization. As long as cybercriminals make their email credible enough, a user is likely to click on the link or open a file. That’s all it takes.

The human factor is the underlying reason why many cyber-attacks are successful and underestimating the severity of cyber threats is one of the most common errors a business and its employees can make. Everybody, whether at work or at home, has a role to play in protecting information.

Training Objective

Citadel’s Phishing Defense Training is designed to:

  1. Provide employees real-world information security awareness training
  2. Raise staff awareness of phishing and its security implications
  3. Reduce the risk of employees falling for phishing emails
  4. Demonstrate management’s commitment to securing critical information assets
  5. Support the all-important objective of creating an information security-aware culture [1]

Phishing Defense Training — The Process

  1. You select a Phishing Template. We currently offer more than 10 Templates and are continuously adding more. The Template contains a link which recipients are asked to click.
  2. We collaborate to create a “landing page” where phishing recipients who click on the link in the email are taken. The landing page is co-branded with your logo and ours. The landing page provides a “learning moment” to staff to sensitize them to the dangers of phishing.
  3. You provide us a spreadsheet containing first name, last name and email address of staff to be phished.
  4. We email staff a phishing email based on the chosen Template.
  5. Staff who click on the link in the email are taken to the “landing page” where they receive phishing defense training.
  6. Management gets a report identifying all staff who clicked on the link as well as the percentage of staff who clicked on the link.

Background Information & Additional Resources

SecureTheVillage: Cyber Threats

SecureTheVillage: Secure the Human

 

[1] Beyond Information Security Awareness Training: It’s Time to Change the Culture, Information Security Management Handbook, Sixth Edition, edited by Hal Tipton and Micki Krause, Auerbach,  2006.

Call us for a free confidential consultation:
323-428-0441

Get our newsletter

A weekly report of critical security updates and the latest cybersecurity news delivered to your inbox from Secure The Village.

Sign Up

Overview: Delivering Information Peace of Mind ® to Business and the Nonprofit Community

  • Citadel’s Information Peace of Mind ® Program
  • Assessments and Reviews
  • Information Security Policies and Standards
  • Privacy: Information Inventory / Data Mapping
  • SecureTheHuman
  • Client Success Stories
  • Security Management of the IT Network / Infrastructure
  • Phishing Defense Training
  • Incident Response / Business Continuity
  • CCPA and Defendable Security Procedures and Practices
  • Litigation Support
  • Secure Application Development — Learn By Doing
  • Keynotes

Get in touch

323 428 0441
info@citadel-information.com

Citadel Information Group
Citadel on Linkedin
SecureTheVillage on Linkedin

About Us

Citadel Information Group is a full service integrated information security management / governance firm. We work either consultatively or as part of a client’s senior management team, assisting our clients cost-effectively manage the confidentiality, privacy, integrity and availability of their information. Learn more.

Key Resources

  • The Citadel Way to Information Security Management
  • Creating a Cybersecurity Aware Culture
  • Secure Application Development: The CISO’s Role – a webinar with WhiteHat Security
  • Information Security Library

Copyright © 2018 by Citadel Information Group  All Rights Reserved | Privacy Policy