Actions
Put in place annual, mandatory cybersecurity training for all employees
Conduct email mock phishing exercises on a quarterly basis
Risk factors
Security controls can reduce the number of malicious emails. Some will still get through to your employees’ mailboxes.
Effective email phishing attacks rely on the recipient to:
- Click a link
- Open an attachment
- Provide a username or password
Educate your employees on cybersecurity best practices. Include information about email, passwords, web browsing, social media, mobile devices.
Recommendations
Offer cybersecurity training sessions in several areas. Provide short, focused modules on a variety of subjects that take 5-15 minutes to complete. The total training time should add up to at least one hour per year.
Look at the industry benchmarks for your type of organization. Conduct follow-up training with "frequent clickers."
Regular communications about cybersecurity reinforces the lessons learned in training.
- Subscribe to the County’s monthly cybersecurity awareness newsletter
- Promote the County’s annual cybersecurity events during October Cybersecurity Awareness Month
Related
-
Cybersecurity
Learn about how we’re keeping the County network secure and how you can protect yourself and your business safe too.
-
Cybersecurity newsletter
Read and subscribe to our monthly newsletter, Marin CyberSafe News.
-
Top cybersecurity tips for organizations
Learn how to protect your business or organization from cyberattacks. These cybersecurity tips will help you protect your organization’s information.