Proofpoint Logo

Security Awareness Training.

Today’s threat landscape is constantly evolving. Proofpoint Security Awareness Training delivers the right education to the right people. And it ensures the right response from your users when faced with sophisticated phishing attacks and more.

The vast majority of today’s threats require humans to activate them. Ensure your users know what to do when faced with a real threat by providing them with targeted education. Our unique people-centric approach can reduce successful phishing attacks and malware infections by up to 90%. 

Identify Risk

Identify who is being attacked and evaluate their ability to protect themselves. The solution identifies risk through Very Attacked People (VAP) reports, threat simulations, and knowledge assessments. VAP reports provide valuable data like who is clicking on known malicious content and is being targeted the most by attackers. Simulations can utilize templates from Proofpoint threat intelligence to ensure realistic measurements of user risk while knowledge assessments are fully customizable.

  • Very Attacked People (VAPs) Reports
  • ThreatSim Phishing Simulations
  • ThreatSim USB Simulations
  • ThreatSim SMS Simulations
  • CyberStrength® Knowledge Assessments

Change Behavior

Deliver targeted education driven by threat intelligence to the right users. Our education content is fully customizable and built using Learning Science Principles. This ensures that your users are engaged during the training to better retain these critical skills. Choose from a wide variety of content, including:

  • Interactive Training Modules
  • Video Training Modules
  • Game-based Training Modules
  • Security Awareness Materials, including posters, infographics, newsletters and more
  • Program Materials for Administrators

Reduce Exposure

Turn your employees into a strong last line of defense and make them part of your team. Empower them to report suspicious emails with the PhishAlarm® Email Add-In. Content from the messages is analyzed by Proofpoint threat intelligence, while the URLs and attachments are sandboxed for malicious content. Your administrators can choose to automatically remediate malicious messages and send the user who reported it customized feedback. This Closed-Loop Email Analysis and Response (CLEAR) solution includes:

  • PhishAlarm Email Reporting Add-in
  • PhishAlarm Analyzer Threat Prioritization
  • Threat Response Auto-Pull (TRAP)

Business Intelligence and Integrations

Get the granular and high-level visibility you need into your users’ assessments, simulated attacks, and training assignments. We offer responsive, easy-to-read business intelligence with a modern UI.

 

Multinational Support

In addition to other built-in features, the solution offers extensive multinational support. This includes translations and localizations of user content in up to 35+ languages.

What Is Security Awareness Training?

Ensuring that individuals understand and follow certain practices to help ensure the security of an organization. From this perspective, security awareness training has been around practically forever, especially when you consider the need for security in military applications.

Today, security awareness training emphasizes information security, and especially cybersecurity. Rapid advances in information technology — and parallel innovations by cybercriminals — mean that employees and other end users need regular, specific training on how to stay safe online and protect their information and that of their employers.

This article is an introduction to security awareness training and its importance: why organizations use it, how it has evolved over the years, and how it helps to reduce the threat of cyberattacks and other security breaches. Finally, we’ll introduce some tools for creating an effective security awareness program.

Cybersecurity awareness training has a critical role to play in minimizing the serious cybersecurity threats posed to end users by phishing attacks and social engineering. Key training topics typically include password management, privacy, email/phishing security, web/internet security, and physical and office security.

There’s also a business case to be made for security awareness training, as explored in the Aberdeen Group’s report, Security Awareness Training: Small Investment, Large Reduction in Risk. The researchers conducted a workshop with enterprise security leaders to find out why they invest in security awareness and training. They found that:

  • 91% use security awareness to reduce cybersecurity risk related to user behavior
  • 64% use it to change user behavior
  • 61% use it to address regulatory requirements
  • 55% use it to comply with internal policies

Effectiveness of Security Awareness Training

Over a two-year period, a financial institution recorded a 95% reduction in malware and viruses, and a greater awareness of cybersecurity threats.

A college in the Northeastern US reported a significant reduction in malware and viruses, a 90% reduction in successful phishing attacks, significantly fewer support requests, an increase in the number of users reporting incidents and attacks, and a greater awareness of security issues.

An employee benefits organization realized more than an 89% reduction in phishing susceptibility utilizing our assessment and education modules as core components of their security awareness and training program.

Security awareness training helped city government employees reduce average click rates by 80% in one year and avoid a sophisticated wire transfer fraud attack.