Security training and awareness

GDPR

During the onboarding process, employees are provided with in-depth training sessions that familiarize them with the organization's security policies, procedures, and guidelines. They are educated on the importance of safeguarding sensitive data, both from an organizational and individual perspective. The training also emphasizes the significance of complying with the General Data Protection Regulation (GDPR) to ensure the privacy and confidentiality of personal information.

On an annual basis, employees undergo refresher training to reinforce their knowledge and understanding of cyber security and information security. This training includes updates on emerging threats and techniques used by cybercriminals, ensuring employees are equipped with the necessary skills to identify and respond to potential security breaches effectively.

Cyber & Information Security

Employees are also required to complete comprehensive Cyber Security and Information Security training upon joining the organization and are assigned refresher training on an annual basis to ensure they remain up to date with the latest security protocols and best practices. This training covers a wide range of topics including data protection, secure communication practices, password management, network security, and recognizing and responding to potential security threats.

Email Phishing

In addition, edison365 conducts a monthly phishing simulation to further enhance employees' awareness and preparedness against email phishing attacks. This simulation involves creating realistic scenarios that mimic actual phishing attempts to test employees' ability to identify and respond appropriately to suspicious emails. Through this interactive exercise, employees gain hands-on experience in recognizing common phishing techniques and understanding the potential consequences of falling victim to such attacks.

Furthermore, edison365 provides immediate training to employees who are caught in the phishing simulation. This training aims to educate them on the specific tactics used in the simulated phishing emails, highlighting the red flags and warning signs to look out for in real-life situations. By staying proactive in identifying and addressing potential vulnerabilities, edison365 ensures that their workforce remains well-equipped to protect sensitive data and mitigate the risks associated with phishing attacks (one of the most common security breaches).