Alexandre Pluvinage is Head of anti-fraud and online security awareness at ING Belgium. During a full day of intense training, he will teach you the basics of cybersecurity and the communication techniques linked to behavioural change. You will draft your first annual awareness plan and your first communication campaign. Download our leaflet for more details.
"},"textLinks":[{"url":"/en/business/news/secure-business/business-trainings","text":"All the information on our cybersecurity trainings for companies"}]},{"componentType":"sectionTitle","title":"Train all employees in the basics of cyber security"},{"componentType":"paragraph","richBody":{"value":"Regular employee training is a crucial step in strengthening online security.
Key points to bear in mind:
Raise awareness about threats: Inform your employees about the different forms of online attack, such as phishing and malware.
Explain the potential impact of these threats on the company and the measures to be taken to avoid them.
Good security practices: Emphasise the importance of creating strong passwords, using two-factor authentication, keeping software up to date and not downloading files or clicking on suspicious links.
Simulated attacks: Organise drills with simulated attacks to test employees' knowledge of online security. This helps raise awareness and identify areas that need further attention.
In addition to raising employee awareness, it is crucial to identify the key people within your company who should play an active role in online security:
Management: Company management must set an example by respecting best practices in online security. They should actively support awareness-raising initiatives and allocate the necessary resources to cyber security.
Information Security Officer: Appoint a person to be responsible for information security within your company. This person should oversee security measures, coordinate training and establish protocols in the event of an incident.
IT team: IT professionals play a crucial role in protecting the company’s systems and data. They should put security measures in place, monitor suspicious activity and be available to respond to employees' questions and concerns.
Raising awareness about online security must be an ongoing process, integrated into the company's culture.
The basic principles of this type of training are:
Regular communication: Provide regular updates on new threats and best practices in online security. Use different communication channels such as newsletters, posters or emails to reach all employees.
Recognition and awards: Encourage employees to adopt secure online behaviour by acknowledging their efforts. This can include rewards or special citations for reporting potential security problems or following security procedures in an exemplary manner.
Ongoing training: Offer ongoing training opportunities to keep employees up to date with the latest security innovations and expand their knowledge.
This schedule covers a three-month period, but you can adjust it according to your company's needs and resources:
"}},{"componentType":"paragraph","title":"Month 1","richBody":{"value":"Week 1:
General awareness session: Organise an awareness-raising meeting for all employees, explaining the main online security risks and the best practices to adopt.
Week 2:
Password management training: Organise a training session on how to create strong passwords and implement secure login management. Stress the importance of using unique passwords for each account.
Week 3:
Phishing awareness: Phishing training using material on Safeonweb.be (https://surfersanssoucis.safeonweb.be). It is advisable (although not compulsory) to carry out a phishing attack simulation exercise to test employees' knowledge and ability to detect suspicious emails before and then after the training. The results can be used to stimulate your employees.
Week 4:
Malware awareness: Explain the different types of malware and the associated risks. Provide advice on prevention, such as installing antivirus software and checking sources before downloading files.
Week 1:
Two-factor authentication (2FA) training: Explain the benefits of two-factor authentication and show employees how to activate this feature on their work and personal accounts.
Week 2:
Raising awareness about mobile device security: Focus on the risks associated with mobile devices, such as lost or stolen mobile phones. Provide advice on securing devices, such as using PIN codes or biometric locking features.
Week 3:
Wireless network security training: Explain the risks associated with public Wi-Fi networks and provide advice on securing the Internet connection when using unsecured networks.
Week 4:
Raising awareness about the need to protect sensitive data: Inform employees about data confidentiality and best practices for protecting sensitive company and customer information.
Week 1:
Social media security training: Highlight the risks associated with the use of social media, such as the excessive sharing of personal information or the disclosure of confidential professional data. Provide advice on protecting privacy online.
Week 2:
Security incident response drill: Organise a security incident simulation drill to test employees' responsiveness in the event of an attack or data breach. Assess procedures and identify areas for improvement.
Week 3:
Closing session and reminder: Summarise the main points covered in the previous sessions. Thank employees for their active participation and stress the ongoing importance of online security.
Week 4:
Knowledge management: Administer an online test or assessment to assess employees' knowledge of online security. This will enable you to measure the effectiveness of awareness-raising and identify areas where further action may be required.
Raising awareness about online security is an ongoing process. It is important to plan regular reminders, updates and additional training to maintain a high level of awareness and preparedness in the face of constantly shifting threats.
"}}]},"complementaryZone":{"flexComponents":[{"componentType":"sectionTitle","title":"Also interesting !"},{"componentType":"cards","cards":[{"componentType":"articleCard","cardType":"article","cardSize":"medium","title":"Your company and the NIS2 Directive","body":"Is your company subject to NIS2 and what does this mean?","image":{"transformBaseUrl":"https://assets.ing.com/transform/31ab1391-5af1-4c56-bac5-2bce3d7fc151/closedlock2","type":"image","width":160,"original":"https://assets.ing.com/m/72091172e72f6ae6/original/closedlock2.svg","extension":"svg"},"date":"2024-07-25","link":{"url":"/en/business/news/secure-business/my-company-and-nis2"}},{"componentType":"articleCard","cardType":"article","cardSize":"medium","title":"Protect your company against cybercriminals? Yes, you can!","body":"Follow our cybersecurity trainings and close the door to cybercriminals","image":{"transformBaseUrl":"https://assets.ing.com/transform/9b6efb10-8f60-41f5-bac3-5e4e15706ac1/Silhouette-of-a-business-man-walking-along-a-passage-with-green-trees-reflecting-in-the-glass","type":"image","width":5200,"altTextEN":"\"\"","altTextNL":"\"\"","altTextFR":"\"\"","altTextDE":"\"\"","original":"https://assets.ing.com/m/6dbf2299c845b8ad/original/Silhouette-of-a-business-man-walking-along-a-passage-with-green-trees-reflecting-in-the-glass.jpg","extension":"jpg"},"date":"2024-03-20","link":{"url":"/en/business/news/secure-business/business-trainings"}},{"componentType":"articleCard","cardType":"article","cardSize":"medium","title":"Corporate cyber hygiene","body":"Provide the necessary IT-security to your organisation","image":{"transformBaseUrl":"https://assets.ing.com/transform/0443f2bf-bf50-4e13-b816-c139ff25ed6c/Keys-on-a-board","type":"image","width":3872,"original":"https://assets.ing.com/m/4f0a0c82c1ad42b1/original/Keys-on-a-board.jpg","extension":"jpg"},"date":"2023-08-09","link":{"url":"/en/business/news/secure-business/business-cyber-hygiene"}},{"componentType":"articleCard","cardType":"article","cardSize":"medium","title":"Cybersecurity reaction plan","body":"Limit the impact of a cyber-attack","image":{"transformBaseUrl":"https://assets.ing.com/transform/7997b036-5928-410a-ac3b-0469bec6d9ae/SIDE-VIEW-OF-A-MAN-WORKING-IN-THE-MIRROR","type":"image","width":6602,"altTextNL":"\"\"","original":"https://assets.ing.com/m/5ea7bb912077e52a/original/SIDE-VIEW-OF-A-MAN-WORKING-IN-THE-MIRROR.jpg","extension":"jpg"},"date":"2023-08-10","link":{"url":"/en/business/news/secure-business/business-reaction-plan"}}]}]}}}