Phishing Security Awareness

Phishing Security Awareness

Phishing is a primary threat vector for all organizations, including banks and credit unions.  A layered defense strategy or defense in depth is a key in minimizing the risk from phishing and other social engineering tactics.   Along with technical controls, training and testing the human element is critical to protecting your organization from phishing attacks.

During our IT audits, SuperiorAudit sends simulated phishing attacks to the institutions’ employees.  These simulated phishing attacks evaluate the employees’ susceptibility to social engineering attacks.   Learn more about our IT audits here.  The phishing testing is used to evaluate the effectiveness of the institutions’ security awareness training.

“Training programs should include scenarios capturing areas of significant and growing concern, such as phishing and social engineering attempts.” (FFIEC Information Security Booklet  pg. 17)

Managed Phishing Awareness

In addition to the phishing testing conducted during our IT Audits, we can perform on-going security awareness training augmented with phishing simulations.  This combination of security awareness training and phishing testing improves an institution’s security posture dramatically.  We use PhishingBox to deliver our security awareness training and conduct our phishing testing.

Phishing Awareness Training and Testing with PhishingBox

In addition to using PhishingBox for our managed phishing awareness and training, we are also a reseller for the PhishingBox system.  This partnership with PhishingBox allows us to provide discounts for clients that would like to conduct security awareness training and phishing testing through a self-service portal.

Quick Contact

Need to send confidential information, click here to use our secure file transfer.