|
Training Topics
-
Social Engineering
 Social engineering techniques, goals, recognizing attacks, workplace social engineering, phishing, examples of notorious social engineering successes, individual responsibility. Importance of reporting suspected social engineering attacks.
-
Social Media and Social Networking
 Caveat posting personal or business information on social media websites. Privacy policy, case examples. Protecting your personal and company identity. The importance of privacy settings on Facebook, LinkedIn, Twitter, and others. The importance of verifying friend requests.
-
Advanced Persistent Threat
 The APT and why employees are a doorway that foreign and domestic APT teams use to gain access to your organization.
-
Appropriate Use
 Personal use guidelines for company computing equipment. What is appropriate, illegal, or grounds for disciplinary action. Avoid illegal activities, sexually oriented websites, gambling, harrassments.
-
Internet Security
 Email vulnerabilities, dangers of free software, file sharing, phishing, fraudulent websites and drive-by downloads. Sending sensitive information, encryption, reporting data leaks. Relative security of password protected files versus encryption. Dangers of links and attachments in unsolicited email.
-
Incident Reporting
 Recognizing reportable incidents, importance of timely reporting, where to report incidents. What kind of incidents are reportable: password sharing, improper exposure of sensitive documents or data.
-
Laptop Security
 Vulnerability of sensitive data on mobile devices, best practices at hotels, airports, cafes, automobiles, Wi-Fi risks, cable lock policy, shoulder surfing. The imporantance of encryption on laptops. Password locking other portable devices.
-
Passwords
 Stresses the importance of not sharing passwords, what makes a strong password, password policy, techniques to construct a memorable strong password. How passphrases and challenge questions can be hacked.
-
Payment Card Information
 Overview of PCI-DSS. What is PCI? Storage and disposal of PCI. Authorized means of storing PCI. Retention of PCI. Locating payment card information.
-
Protecting Information
 Personally Identifying Information (PII), responsibility to protect company and customer information, data aggregation, the cost of data loss, approved data retention and disposal. Threats to your unlocked computer. Importance of locking your computer and monitor positioning.
-
Security Awareness Quiz
 The student is presented with a ten question quiz randomly drawn from a pool of thirty questions. Questions can be revised to meet your company requirements and policy.
-
User Responsibility and Acknowledgment
 An optional responsibility statement followed by an acknowledgment. Optional. Your company acknowledment statement inserted here.
-
Certificate
 If you LMS does not provide a course completion certificate, we can configure the last page of the course to provide either of: (1) A printable pdf certificate or (2) A SCORM-compliant printable HTML certificate
Contact us to view the entire course online.
|
