Wiley, profile picture
Uploaded byWiley
PDF, PPTX2,672 views

10 Steps to Creating a Corporate Phishing Awareness Program

The document outlines 10 steps for creating a corporate phishing awareness program aimed at educating employees and protecting enterprises from phishing attacks. Key steps include writing a realistic phishing email, obtaining necessary approvals, updating email lists, preparing educational resources, conducting tests, collecting data, and providing reports on effectiveness. The process requires ongoing commitment, and companies may consider hiring staff or consultants if internal resources are lacking.

Technology◦
Related topics:
The Online Safety Overview•

Embed presentation

Download as PDF, PPTX
10 STEPS to Creating a Corporate Phishing Awareness Program
Phishing awareness programs help enterprises protect themselves from phishing scams and breaches. It’s a highly effective way of educating employees and helping them spot phishing attacks.
The ins and outs of such a program depend very much on the company, but here’s a basic outline of a typical program to give you an idea of what’s involved.
Write a phishing e-mail that is realistic, current, and relevant and isn’t psychologically damaging to your staff
Run that e-mail through the appropriate departments (such as HR and legal) to get approval, which will likely involve edits and new iterations
Ensure your lists are updated—adding new hires and removing those who have left the company
Prepare a proper educational landing page for people who click on the phish
Load the system you will use with the e-mail lists, phishing e-mail, and landing pages
Schedule and test the sending of the e-mail
Ensure the e-mail is sent without any problems
Collect all data, which might include number of clicks, number of people who report the phish, and so on 26 15 8
Report on the data, giving information in regard to positive or negative trends 26 15 8
Repeat the process each month or quarter
As you can see, this is not a part-time job. Maybe you can hire someone to help you run this program internally or you might have someone on staff that is perfect for the job. But if you don’t have the staff, skill, or desire to run a phishing program internally then a consultant will be able to run it for you.
For more on setting up and running a corporate phishing program, check out PHISHING DARK WATERSThe Offensive and Defensive Sides of Malicious E-mails by Christopher Hadnagy and Michele Fincher

More Related Content

PPTX
Phishing attack seminar presentation
byAniketPandit18
 
PPT
Phishing
byanjalika sinha
 
PDF
How to Spot and Combat a Phishing Attack - Cyber Security Webinar | ControlScan
byControlScan, Inc.
 
PPTX
Phishing Attacks
byJagan Mohan
 
PPTX
Phishing ppt
byshindept123
 
PPTX
Phishing
byNorth Carolina State University
 
PPTX
Phishing ppt
bySanjay Kumar
 
PPTX
Phishing Technology
byAvishekMondal15
 
Phishing attack seminar presentation
byAniketPandit18
 
Phishing
byanjalika sinha
 
How to Spot and Combat a Phishing Attack - Cyber Security Webinar | ControlScan
byControlScan, Inc.
 
Phishing Attacks
byJagan Mohan
 
Phishing ppt
byshindept123
 
Phishing
byNorth Carolina State University
 
Phishing ppt
bySanjay Kumar
 
Phishing Technology
byAvishekMondal15
 

What's hot

PPTX
Phishing Scams: 8 Helpful Tips to Keep You Safe
byCheapSSLsecurity
 
PPTX
What is Phishing and How can you Avoid it?
byQuick Heal Technologies Ltd.
 
PPTX
Phishing technology
byPreeti Papneja
 
PPTX
Phishing
bySyeda Javeria
 
PPTX
PPT on Phishing
byPankaj Yadav
 
PPTX
Phishing
bySouganthikaSankaresw
 
PPTX
Phishing Attack : A big Threat
bysourav newatia
 
PPTX
Phishing and hacking
byMd. Mehadi Hassan Bappy
 
PPTX
Phishing
bySaurabhKantSahu1
 
PPTX
Phishing ppt
byshindept123
 
PPTX
Different Types of Phishing Attacks
bySysCloud
 
PPTX
PHISHING PROJECT REPORT
byvineetkathan
 
PPT
P H I S H I N G
bybensonoo
 
PPTX
Phishing attack till now
byelakkiya poongunran
 
PPTX
Phishing technique tanish khilani
byTanish Khilani
 
PPT
Introduction to phishing
byRaviteja Chowdary Adusumalli
 
PPTX
Phishing
byArchit Mohanty
 
PPTX
Teaching Your Staff About Phishing
byLegal Services National Technology Assistance Project (LSNTAP)
 
PDF
What is a phishing attack
byAariyaRathi
 
PPTX
Phishing
byCarla Morales VĂĄsquez
 
Phishing Scams: 8 Helpful Tips to Keep You Safe
byCheapSSLsecurity
 
What is Phishing and How can you Avoid it?
byQuick Heal Technologies Ltd.
 
Phishing technology
byPreeti Papneja
 
Phishing
bySyeda Javeria
 
PPT on Phishing
byPankaj Yadav
 
Phishing
bySouganthikaSankaresw
 
Phishing Attack : A big Threat
bysourav newatia
 
Phishing and hacking
byMd. Mehadi Hassan Bappy
 
Phishing
bySaurabhKantSahu1
 
Phishing ppt
byshindept123
 
Different Types of Phishing Attacks
bySysCloud
 
PHISHING PROJECT REPORT
byvineetkathan
 
P H I S H I N G
bybensonoo
 
Phishing attack till now
byelakkiya poongunran
 
Phishing technique tanish khilani
byTanish Khilani
 
Introduction to phishing
byRaviteja Chowdary Adusumalli
 
Phishing
byArchit Mohanty
 
Teaching Your Staff About Phishing
byLegal Services National Technology Assistance Project (LSNTAP)
 
What is a phishing attack
byAariyaRathi
 
Phishing
byCarla Morales VĂĄsquez
 

Viewers also liked

PPTX
Phishing awareness
byPhishingBox
 
PPT
Phishing attacks ppt
byAryan Ragu
 
PPTX
A presentation on Phishing
byCreative Technology
 
PPTX
Don’t Get Caught by Phishing Emails!
byAventis Systems, Inc.
 
PPTX
Different types of attacks in internet
byRohan Bharadwaj
 
PPTX
Learning to Detect Phishing Emails
bybutest
 
PPTX
PCI Password Policy Compliance
bynFront Security
 
PPTX
Dns security threats and solutions
byFrank Victory
 
PDF
Security Breach: It's not if, it's not when, it's will you know
byqmatheson
 
PPT
The Phishing Ecosystem
byamiable_indian
 
PPT
Strategies to handle Phishing attacks
bySreejith.D. Menon
 
PDF
Deloitte Maverick 2015 - Regional Round - TAPMI - Imagine Dragons
byjustaparna
 
POTX
Phishing Forensics - SnowFROC - Denver Chapter of OWASP
byFrank Victory
 
PDF
Differential learning SnowFROC 2017
byFrank Victory
 
Phishing awareness
byPhishingBox
 
Phishing attacks ppt
byAryan Ragu
 
A presentation on Phishing
byCreative Technology
 
Don’t Get Caught by Phishing Emails!
byAventis Systems, Inc.
 
Different types of attacks in internet
byRohan Bharadwaj
 
Learning to Detect Phishing Emails
bybutest
 
PCI Password Policy Compliance
bynFront Security
 
Dns security threats and solutions
byFrank Victory
 
Security Breach: It's not if, it's not when, it's will you know
byqmatheson
 
The Phishing Ecosystem
byamiable_indian
 
Strategies to handle Phishing attacks
bySreejith.D. Menon
 
Deloitte Maverick 2015 - Regional Round - TAPMI - Imagine Dragons
byjustaparna
 
Phishing Forensics - SnowFROC - Denver Chapter of OWASP
byFrank Victory
 
Differential learning SnowFROC 2017
byFrank Victory
 

Similar to 10 Steps to Creating a Corporate Phishing Awareness Program

PPTX
Phishing Awareness Training.pptx
byHajar Bouchriha
 
PPTX
CNS_Presentation_edited_pptx ,,
byqsirius12
 
PPTX
Potential presentation template Task 2 (3).pptx
byAshishMoghe7
 
PDF
4. 2023 Defcon Phishing Report by Industry.pdf.pdf
byMichaelSasi
 
PPTX
Aaron Higbee - The Humanity of Phishing Attack & Defense
bycentralohioissa
 
PPTX
Aaron Higbee - The Humanity of Phishing Attack & Defense
byJason Luttrell, CISSP, CISM
 
PDF
90% of Data Breaches Start with Phishing—Here’s How to Protect Yourself.pdf
byEnterprise world
 
PDF
Phishing Simulation By Shield Alliance
byPrime Infoserv
 
PDF
PHISHING PROTECTION
bySylvain Martinez
 
PPT
Usable Privacy and Security: A Grand Challenge for HCI, Human Computer Inter...
byJason Hong
 
PDF
How To Catch a Phish: User Awareness and Training
byLondon School of Cyber Security
 
PPTX
Dont take the bait Webinar Deck English Version
bymrrakosa
 
PDF
Irm 13-phishing
byKasper de Waard
 
PDF
Phishing Presentation.pdf
byVardhan79
 
PPTX
How I Will Phish You
byDawn Yankeelov
 
PDF
Research Paper on Spreading Awareness About Phishing Attack Is Effective In R...
byIRJET Journal
 
PDF
Phishing test
bycyberware AI
 
PPT
User Interfaces and Algorithms for Fighting Phishing, at Google Tech Talk Jan...
byJason Hong
 
PPT
Achieving Behavioral Change, for ISSA 2011 in San Francisco Feb 2011
byJason Hong
 
PPTX
Cyber_Security_Awareness_Program_Presentation.pptx
bybismanaeembaig
 
Phishing Awareness Training.pptx
byHajar Bouchriha
 
CNS_Presentation_edited_pptx ,,
byqsirius12
 
Potential presentation template Task 2 (3).pptx
byAshishMoghe7
 
4. 2023 Defcon Phishing Report by Industry.pdf.pdf
byMichaelSasi
 
Aaron Higbee - The Humanity of Phishing Attack & Defense
bycentralohioissa
 
Aaron Higbee - The Humanity of Phishing Attack & Defense
byJason Luttrell, CISSP, CISM
 
90% of Data Breaches Start with Phishing—Here’s How to Protect Yourself.pdf
byEnterprise world
 
Phishing Simulation By Shield Alliance
byPrime Infoserv
 
PHISHING PROTECTION
bySylvain Martinez
 
Usable Privacy and Security: A Grand Challenge for HCI, Human Computer Inter...
byJason Hong
 
How To Catch a Phish: User Awareness and Training
byLondon School of Cyber Security
 
Dont take the bait Webinar Deck English Version
bymrrakosa
 
Irm 13-phishing
byKasper de Waard
 
Phishing Presentation.pdf
byVardhan79
 
How I Will Phish You
byDawn Yankeelov
 
Research Paper on Spreading Awareness About Phishing Attack Is Effective In R...
byIRJET Journal
 
Phishing test
bycyberware AI
 
User Interfaces and Algorithms for Fighting Phishing, at Google Tech Talk Jan...
byJason Hong
 
Achieving Behavioral Change, for ISSA 2011 in San Francisco Feb 2011
byJason Hong
 
Cyber_Security_Awareness_Program_Presentation.pptx
bybismanaeembaig
 

More from Wiley

PDF
Should you get an MBA?
byWiley
 
PDF
The 5 Types of Meetings Project Managers Need to Master-Slide Deck Number Thr...
byWiley
 
PDF
The 5 Types of Meetings Project Managers Need to Master - Slide Deck Number T...
byWiley
 
PDF
Leadership Makes a Difference
byWiley
 
PDF
19 Inspiring Books by Jon Gordon
byWiley
 
PPTX
7 Steps to Develop Well-Designed Course Objectives
byWiley
 
PDF
Level I CFA Exam 2017 Curriculum Updates
byWiley
 
PDF
Leadership Is for Everyone
byWiley
 
PPTX
Today's Students: 7 Powerful Facts
byWiley
 
PDF
3 Big Myths That Hold Women Back
byWiley
 
PDF
A Celebration of Women's History Month
byWiley
 
PDF
Valuing International Collaboration in Research
byWiley
 
PDF
An Educator's Guide to Cheating
byWiley
 
PDF
Mine the Gap: Using Handouts With Gaps
byWiley
 
PDF
5 Reasons to Earn Your CPA License WEL
byWiley
 
PDF
6 Steps to Hire Someone with Soft Skills
byWiley
 
PDF
The Five Leadership Practices that Improve Sales Success
byWiley
 
PPTX
Publisher as Strategic Partner for Societies October 2019
byWiley
 
PDF
From DBA to EBA: A Five-year Story from a Consortium Shared E-Book Collection...
byWiley
 
PDF
Get Your Students Motivated: Tips for the Classroom
byWiley
 
Should you get an MBA?
byWiley
 
The 5 Types of Meetings Project Managers Need to Master-Slide Deck Number Thr...
byWiley
 
The 5 Types of Meetings Project Managers Need to Master - Slide Deck Number T...
byWiley
 
Leadership Makes a Difference
byWiley
 
19 Inspiring Books by Jon Gordon
byWiley
 
7 Steps to Develop Well-Designed Course Objectives
byWiley
 
Level I CFA Exam 2017 Curriculum Updates
byWiley
 
Leadership Is for Everyone
byWiley
 
Today's Students: 7 Powerful Facts
byWiley
 
3 Big Myths That Hold Women Back
byWiley
 
A Celebration of Women's History Month
byWiley
 
Valuing International Collaboration in Research
byWiley
 
An Educator's Guide to Cheating
byWiley
 
Mine the Gap: Using Handouts With Gaps
byWiley
 
5 Reasons to Earn Your CPA License WEL
byWiley
 
6 Steps to Hire Someone with Soft Skills
byWiley
 
The Five Leadership Practices that Improve Sales Success
byWiley
 
Publisher as Strategic Partner for Societies October 2019
byWiley
 
From DBA to EBA: A Five-year Story from a Consortium Shared E-Book Collection...
byWiley
 
Get Your Students Motivated: Tips for the Classroom
byWiley
 

Recently uploaded

PDF
Skills to Pass the UiPath Agentic Automation Associate (UiAAA) Certification
byUiPathCommunity
 
PDF
Getting the Best of TrueDEM – January News & Updates
bypanagenda
 
DOCX
Best Web to Learn About Buying Verified Skrill Accounts (Los Angeles).docx
byhttps://topsellerit.com/product/buy-verified-binance-accounts/
 
PDF
Why Are Cloud Migration Services Essential for Modern Business Growth?
byGeoPITS Global Pvt Ltd
 
PPTX
AI in Marine Insurance Future of Smarter Risk, Faster Claims & Safer Shipping...
byAutomationEdge Technologies
 
PDF
10 Best AI Tools for Fashion Brands in 2026
bymockitseo
 
PDF
How to Build a Crypto Wallet that Excels in 2026.pdf
byimoliviabennett
 
PPTX
Achieve enterprise automation with SAP BTP solutions and SAP Signavio
bydarrellkiwi
 
PPTX
Mastering SQL Server Replication: Types, Setup & Troubleshooting
byGeoPITS Global Pvt Ltd
 
PDF
Agentic AI Roadmap 2026: Mastering Autonomous AI Workflows and Systems
byAeafat Ahmed Mubin
 
PDF
5G Explained! A High Level Overview [Introduction]
byLuciano Motta
 
PPTX
AI Meets DBA Transforming Database Administration with Intelligence
byGeoPITS Global Pvt Ltd
 
PPTX
API Gateway Architecture - Technical Report 2026
byPowersoft2026
 
PPTX
Dell poweredge-customer-presentation.pptx
byhungungphu123
 
PPTX
Apache Kafka 101 for Techies in IT dep.pptx
byamulyareddyk97
 
PDF
CISO_2027_Playbook: Sovereign AI Resilience & Quantum-Proof Identity
bySaraDavis91
 
PPTX
SOFTWARE DEVELOPMENT PROCESS - INTRODUCTION
byParithi Thamizh
 
PPTX
6G and Non-Terrestrial Networks (NTN) Testing.pptx
byXRComm
 
PPT
Database Management Systems: Basics, History, Data Models, etc.
byParithi Thamizh
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
Skills to Pass the UiPath Agentic Automation Associate (UiAAA) Certification
byUiPathCommunity
 
Getting the Best of TrueDEM – January News & Updates
bypanagenda
 
Best Web to Learn About Buying Verified Skrill Accounts (Los Angeles).docx
byhttps://topsellerit.com/product/buy-verified-binance-accounts/
 
Why Are Cloud Migration Services Essential for Modern Business Growth?
byGeoPITS Global Pvt Ltd
 
AI in Marine Insurance Future of Smarter Risk, Faster Claims & Safer Shipping...
byAutomationEdge Technologies
 
10 Best AI Tools for Fashion Brands in 2026
bymockitseo
 
How to Build a Crypto Wallet that Excels in 2026.pdf
byimoliviabennett
 
Achieve enterprise automation with SAP BTP solutions and SAP Signavio
bydarrellkiwi
 
Mastering SQL Server Replication: Types, Setup & Troubleshooting
byGeoPITS Global Pvt Ltd
 
Agentic AI Roadmap 2026: Mastering Autonomous AI Workflows and Systems
byAeafat Ahmed Mubin
 
5G Explained! A High Level Overview [Introduction]
byLuciano Motta
 
AI Meets DBA Transforming Database Administration with Intelligence
byGeoPITS Global Pvt Ltd
 
API Gateway Architecture - Technical Report 2026
byPowersoft2026
 
Dell poweredge-customer-presentation.pptx
byhungungphu123
 
Apache Kafka 101 for Techies in IT dep.pptx
byamulyareddyk97
 
CISO_2027_Playbook: Sovereign AI Resilience & Quantum-Proof Identity
bySaraDavis91
 
SOFTWARE DEVELOPMENT PROCESS - INTRODUCTION
byParithi Thamizh
 
6G and Non-Terrestrial Networks (NTN) Testing.pptx
byXRComm
 
Database Management Systems: Basics, History, Data Models, etc.
byParithi Thamizh
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 

10 Steps to Creating a Corporate Phishing Awareness Program

  • 1.
    10 STEPS to Creatinga Corporate Phishing Awareness Program
  • 2.
    Phishing awareness programshelp enterprises protect themselves from phishing scams and breaches. It’s a highly effective way of educating employees and helping them spot phishing attacks.
  • 3.
    The ins andouts of such a program depend very much on the company, but here’s a basic outline of a typical program to give you an idea of what’s involved.
  • 4.
    Write a phishinge-mail that is realistic, current, and relevant and isn’t psychologically damaging to your staff
  • 5.
    Run that e-mail throughthe appropriate departments (such as HR and legal) to get approval, which will likely involve edits and new iterations
  • 6.
    Ensure your listsare updated—adding new hires and removing those who have left the company
  • 7.
    Prepare a proper educationallanding page for people who click on the phish
  • 8.
    Load the systemyou will use with the e-mail lists, phishing e-mail, and landing pages
  • 9.
    Schedule and testthe sending of the e-mail
  • 10.
    Ensure the e-mailis sent without any problems
  • 11.
    Collect all data,which might include number of clicks, number of people who report the phish, and so on 26 15 8
  • 12.
    Report on thedata, giving information in regard to positive or negative trends 26 15 8
  • 13.
    Repeat the process eachmonth or quarter
  • 14.
    As you cansee, this is not a part-time job. Maybe you can hire someone to help you run this program internally or you might have someone on staff that is perfect for the job. But if you don’t have the staff, skill, or desire to run a phishing program internally then a consultant will be able to run it for you.
  • 15.
    For more onsetting up and running a corporate phishing program, check out PHISHING DARK WATERSThe Offensive and Defensive Sides of Malicious E-mails by Christopher Hadnagy and Michele Fincher