Security threats change every day. Are your employees ready to fight against them? It’s a question that’s often on my mind. Today, hackers do not hack systems; they hack people.
A recent IBM study found that up to 95 percent of breaches are caused by human error. Hackers are exploiting users to gain access to an organization’s information. It can happen without the employees even knowing. The attacks are sophisticated and manipulative.
I want our employees – and the employees of our clients – to have the tools to protect against the constant barrage of cyberattacks. We know education is the best defense, but it’s a tall order. Sending emails on new alerts is not enough and until recently, I found it challenging to provide ongoing, engaging training on the latest topics.
In January, our company rolled out a new end user training called NINJIO. Our success led Marco to provide it as a service to our clients to help them deliver security awareness training to their users and protect against a security breach.
Here’s how it works:
- Animated videos
Through our NINJIO service, we send users 3-4 minute animated videos on stories of actual security breaches. The same writers of these short videos write for Hollywood TV shows like CSI and Hawaii 5-0. Click to watch a sample video.
- New episodes every month
The videos are strategically released every month to keep security top of mind and are based on the most current and pervasive threat. The same story is never told twice. This keeps the content fresh and engaging. Users can also tap into a video library with a variety of topics.
At the end of each of the short videos, users complete a quick “quiz” to ensure they understood the lesson and have the opportunity to make it to the “leader board.”
The effectiveness of security awareness training depends on participation. With this Marco service, we can see who’s engaged in the training. The goal is 90-95 percent participation. But it takes time. Even 75 percent is a really good start, considering the typical email alerts achieve less than 30 percent participation rate with no opportunities to assess learning.
Security awareness training needs to be engaging and memorable to effectively stop security breaches. We continue to get positive feedback from our employees and the employees of our clients. “They actually are fun to watch,” one employee shared.
What I appreciate most is the impact. Organizations can shift from taking a passive approach to hacks on their system to proactively building a line of defense. I can go to bed knowing we are safer as a company – and so are our security awareness training clients.