Faster Delivery = Happy Users
Automated Process = Fewer Errors
Standards = Cost Reduction
Order Visibility = Confidence
Linking Systems = Efficiency
One of the keys to a successful anti-phishing program is communication. Specifically, communicating with users before and after a phishing scenario.
It’s likely not everyone in your organization is a cybersecurity expert. Scheduling regular communication to educate and engage users increases your organization’s awareness, improves your resiliency posture, and supports active threat mitigation.
Start by determining what makes sense for your organization and culture. It doesn’t have to be all-encompassing from the beginning. A good first step is sending a post-scenario communication to users. This is a simple way to begin a communication program.
Also, utilize announcements. Do your users know why they are receiving immersive email training? Do you have a plan for integrating new hires into your phishing program? Re-introduce your anti-phishing program or Cofense ReporterTM button. Keep cyber-security front and center in users’ minds and arm them with the information they need to be successful.
Identify sponsors, stakeholders, and program champions to work with in spreading the message and building a cyber-secure culture. Look for cybersecurity partners at all levels:
Identify communication channels and opportunities. Review what anti-phishing communication currently takes place, and leverage existing methods to ensure a consistent message:
Select methods, events, and dates where the opportunity to talk about cyber-security can be highlighted: the beginning of a quarter, the start of your year, company events. Use these opportunities to discuss your Cofense PhishMeTM program and announce additional initiative(s).
Consistent, multi-level communications reach users on the platforms they monitor most. A fully vetted communication plan for an organization could resemble this chart:
Mapping to the chart, utilize the most relevant, familiar, and replicable options available in Cofense PhishMe:
(See image reference below)
(see image reference below)
This can appear a bit overwhelming, but by leveraging the information already in Cofense PhishMe, and the educational and informational resources available through Cofense Community and at Cofense.com, you’ll find plenty of resources to help you build your messaging quickly.
Continuous engagement benefits both new and mature users. Find ways to keep the conversation going and engage your users on multiple fronts. Look for opportunities to communicate and reinforce positively—when users report phishing emails, as resiliency increases, etc. Delivering consistent messaging encourages positive cyber-security behavior throughout the workday. Planning for communication ensures the message is delivered.
Cofense offers a wealth of free security awareness resources. Check them out here.
This article was originally published here.