Enhanced User Awareness Testing For Finance Organisation

User Awareness Testing And Cyber Security Training in the Finance Sector

Akita worked with a specialist London company involved in regulated financial partnerships to enhance security awareness.

Given its industry and status, ensuring robust cyber security measures was not just a priority but a regulatory necessity. Having already worked with Akita to implement a Microsoft Intune rollout and prioritised Cyber Essentials and security maintenance, the organisation recognised the critical role of user awareness in strengthening its cyber defences.

We therefore worked together to implement a combined user awareness and cyber security training programme.

User Awareness Initiative                                                                             

With over one hundred users spread across various departments, the company recognised that a proactive strategy was needed to improve cyber security education.

To bolster vigilance around security, Akita has implemented a one-month rolling campaign. Targeting users in all job roles and levels of seniority, the programme uses AI technology to generate email content designed to simulate phishing emails and test user security awareness.

Comprehensive reporting is provided to management and stakeholders, detailing campaign metrics, how users have engaged and any observed trends.

Efforts are repeated month-on-month using new email content and tactics to ensure vigilance across all threat dimensions.

Cyber Security Training

Following the phishing attack simulation, any employees who interact with the attack are required to undertake online cyber security training sessions. These educate employees on cyber security best practices, threat detection techniques, and incident response protocols.

Sessions are interactive and provide employees with practical skills to identify phishing attempts, malware, and social engineering tactics. Employees must complete answers correctly to complete the course.

Results

The focused efforts to enhance user awareness have seen quick success. There is now increased employee awareness and vigilance around the threats in email, with camaraderie not to be the one caught out by ever-more sophisticated phishing simulations.

The training method is also beneficial to the organisation. Focusing only on those employees with demonstrable gaps in knowledge means other employees are spared from training sessions. In turn, the interactive online format for training is more engaging than stifled formal sessions where employees are less likely to learn.

By prioritising user awareness and fostering a culture of continuous cyber security vigilance, the finance company has successfully adopted a proactive stance against potential risks and vulnerabilities.