A local county government had an increased risk of security incidents due to the lack of understanding and knowledge about the threats prevalent today. They needed guidance when it came to understanding policies, procedures and their role in IT Security.
Based on the security concerns it was expressed and then determined that Security Awareness Training was in need. Through 8 sessions with about 20 employees in attendance for each M.A. Polce discussed topics of known security threats, importance and necessity of employee involvement in security, why employees should keep personal and work life separated, policies & procedures and incident response. All employees will understand what they can do to decrease the risk of viruses, hacking and breaching situations. If any type of threat(s) were to happen all employees will know what to do and how to report it.
It was shared during the training that two different potential incidents were avoided. An employee who received the malicious emails flagged it to IT without clicking or downloading any files. Employees now have the education to decipher what is not safe and should be reported. All who participated now have a better understanding of what they can do to decrease the risk of viruses, hacking and breaching situations.