Following the acquisition of Encription by BlackBerry UK Limited in February of 2016, the trading assets and liabilities of Encription Limited are being formally assigned to BlackBerry UK Limited effective from 31 January 2017.
For further information please call 0330 100 2345

Staff Security Awareness Training PLUS (SSAT PLUS)

Staff Security Awareness Training PLUS (SSAT PLUS)

This one day course is a comprehensive intensive course on how to stay safe at work and at home with regards to information security. If you think about it there are two ways an attacker (Scam artist, thief, hacker, social engineer, fraudster) will compromise your information, that is face to face or over the wire (phone, mobile phone, email, the internet, wifi etc). The information you put at risk every day (bank account details, personal information, company data etc) is under attack every day unless you safeguard it with some simple steps. This course is all about active defence against malicious cyber attacks against you, your family and the company you work for.

 

This course is in three parts:-

  1. Security awareness training – keeping yourself safe on and offline.
  2. Basic forensic first response – what to do if you discover a cyber attempt
  3. Anti-Social Engineering – how to protect yourself from the new wave of cyber-criminals.

We recommend 10 to 25 participants per session to allow for a constructive Q and A session.

Staff Security Awareness Training (SSAT)

Staff are THE major weakness in IT and information security

Staff can unwittingly give away confidential information, as well as putting your data at risk by not taking the appropriate precautions.

Our Security Awareness Training makes staff aware of the various risks in a practical and appealing way and ultimately create a ‘security aware culture’ within your business.

“There’s a clear payback from investing in staff training. 93% of companies where the security policy was poorly understood had staff-related breaches versus 47% where the policy was well understood.”  (pwc, 2013)

Blackberry work with you to ensure we incorporate your policies into our Security Awareness Training

Everyone should have an ‘Acceptable Use’ policy, ‘Email’ policy or some sort of ‘IT Security’ guidelines. However, do staff actually read these before signing them? The answer is usually NO! If your IT security is compromised in any way and your system goes down, the loss of work time is very costly.

This training addresses all of these issues in just a morning or an afternoon and can also be used as part of an induction programme. This is time and money well spent, if you compare the cost of the course, to the cost of loss of work time when security is breached.

Seminar Objectives

  • To have a good understanding of the company’s IT security policies
  • To know internet security ‘threats’ and understand the terms Virus, Worm, Trojans, Spam and phishing techniques
  • To understand and be aware of security fallacies and misunderstandings
  • To learn how to identify fraudulent emails
  • To understand how ‘hacking’ and ‘social engineering’ techniques are used to compromise IT security
  • To understand how to protect information when using removable media, mobile phones
  • To learn how to create a completely secure password
  • To learn the principles of how to work safely at home & on the road, using VPN or WiFi connections

Key points covered

Anti-Virus and Firewalls – do not give 100% protection. —Why?
Acceptable use policies (based on client’s own policy)
Email policy (based on client’s own policy)
Threats and understanding them – Viruses, Trojans, Phishing, Worms and Spam – What are they? How do they affect your business?
Virtual Private Networks (VPN) – how to transport data and work with it at home and on the road safely
Security Truths – real life case studies of how security has been compromised in businesses
Hacking – How is it done today? Watch a real life hack of a website!!
Social engineering techniques – how social engineers gain employee’s trust and then access their secure information – Real life case studies
Social network sites—the risks
Secure Passwords – how to generate one that will take 20 years to crack!
Wireless network connections (Wi-Fi) security

 

BASIC Forensic Incident; First Responder Course

The Forensic Incident; First Responder level is designed to bring those who may need to collect computer evidence up to speed. In any digital forensics scenario, first response is the most critical stage.

Incorrect handling of evidence could destroy vital clues and/or lead to a case being inadmissible in cour

Course ObjectivesAfter attending the course you will have an understanding of, and have been assessed in:

  • Recognising a need for a computer forensics scenario
  • Determining what constitutes computer evidence
  • Laws concerning the acquisition of computer forensic evidence
  • Chain of custody
  • The risks involved with evidence collection
  • Digital media

Key Points Covered

  • UK Laws concerning evidence collection
  • ACPO guidelines on computer evidence
  • The tools used in evidence collection
  • Recognising what is digital evidence
  • Working with third parties, such as the Police
  • Correctly producing documentation regarding computer evidence

Anti-Social Engineering and Security Counter Measures.

Social engineering is a non-technical method of intrusion that hackers use which relies heavily on human interaction and often involves tricking people into breaking normal security procedures. It is one of the greatest threats that organisations today encounter.You will learn the methodology used by expert social engineering operatives to gain access, learn hidden information and to penetrate systems.

 

You will cover a range of topics including:-

  • What is social engineering
  • The psychology of social engineering
  • The principles of influence
  • Priming techniques
  • Mental focus skills
  • Blending in
  • Verbal and non-verbal communication
  • Calibrating people’s traits
  • The power of suggestion
  • Personality profiling
  • Physical breaches and social engineering testing.

The course is a mix of demonstrations and presentations.

 

Candidates will have an understanding of:

  • The skills of a Social Engineer
  • Basic psychology of social engineering
  • Priming
  • Verbal and nonverbal communication techniques
  • Calibrating people
  • The power of suggestions
  • Physical security breaches
  • Scope documents and the law
  • Pretexting
  • Actions on discovery

 

Who is it designed for?

All staff

 

Qualification

All candidates will be awarded a BlackBerry verified ‘Security Awareness Training PLUS’ Certificate of Attainment

 

Pre-Requisites

There are no pre-requisites for this course, anyone can attend this training.

 

Assessment

There is no formal assessment for the Security Awareness Training PLUS course.

 

On-Site

We can visit your site and deliver the training to you. Ask us for our day rates.

We recommend up to 10  participants per session to allow for a constructive Q and A session.

You would need to provide a suitable room and refreshments for the course.

 

Per course pricing

This course is available “per course” meaning a course is prepared and delivered for you and your needs. There is no minimum number of candidates. The course cost does not change based on the number of candidates so if an individual requires a course with only one candidate then that’s fine, however the course fee remains the same for 1 candidate as it does for 10. The dates of the courses are flexible and are decided by you as long as we have a member of training staff available.