Cybersecurity is once again on the SEC’s OCIE exam priorities list. There are many things that a firm can do to counter the concerns of Cybersecurity. One of the most difficult items to counter is an employee and their inadvertent opening of an email that could open up your firm data to the outside.
Several of my clients have started to work with a firm called KnowBe4. They have a relatively inexpensive program that can handle several of your Cybersecurity concerns relative to employees:
- Cybersecurity Training
- Phishing
They maintain an online library of security awareness training that can assist with the Cybersecurity Training requirement. These trainings can be automated and scheduled reminders sent to employees via email. Which can be documented in the firm’s CRM.
They also have a fully automated system that will send out simulated phishing attacks. This will help you to know which of your employees may be susceptible to a phishing attack. You receive the results of the “attacks” and can then train employees accordingly.
This is an easy, low-cost solution to a problem that isn’t going away. Check out their demo at KnowBe4.com.