Cyberstone offers online training modules designed to teach users about best practices when handling email, using mobile devices, working in public spaces, and dealing with social engineering attacks.
Scenario-based modules equip staff to recognize the value of different types of information; to understand the scope, nature, and origin of the diverse risks to such information; and to behave proactively to protect this information in their everyday work.
Benefits of security awareness training include risk reduction through user education, enforcing corporate policy surrounding security awareness training, and satisfying compliance requirements.
Users will receive access to the following modules which are updated annually to ensure that content is kept up-to-date and relevant.
- Malware Awareness
- Email Security
- Phishing Awareness
- Mobile Device Security
- PCI Compliance
- Password Security
- Physical Security
- Social Engineering
- Travel Security
In addition to the information security and privacy awareness modules, supplemental materials will be provided. These materials include tip sheets, infographics, 2-minute training videos, and customizable articles that may be posted on a corporate intranet site.
Cyberstone’s security awareness training complies with the following regulations.
- PCI Requirement 12.6.1
- HIPAA §164.308(a)(5)(i)
- New York State DFS 23 NYCRR 500 §500.14
- Massachusetts 201 CMR 17.03
- Sarbanes-Oxley (SOX) §404(a)(a)(1)
- Gramm-Leach-Bliley Act §6801(b)(1)-(3)
- Federal Trade Commission 16 CFR Part 314
- FISMA §3544.(b).(4).(A),(B)