IT Security Awareness Training: Employee training for more cyber security

Nine out of ten cyber attacks on Swiss SMEs start harmlessly: An employee receives an email from what appears at first glance to be a trustworthy source, thinks nothing of it, clicks on a link – and opens the door to cyber criminals, allowing them to access the computer and thus the network. Because cyber attacks are becoming increasingly sophisticated, technical protective measures such as firewalls and virus scanners are no longer enough. As the weakest link in the chain, people must be made aware of cyber risks and learn how to protect themselves effectively against attacks.

Technical measures alone do not provide protection if someone leaves a door or window open. This is where cyber security training comes in. People who are regularly made aware of and trained in the dangers are more attentive, recognize phishing emails, social engineering or other manipulations more quickly, and act more securely. This – in conjunction with technical protection measures – significantly reduces the risk of cyber attacks and noticeably reduces operational risks.

Employees learn most effectively when cyber security training is practical, interactive, up-to-date in terms of content and technology, and seamlessly integrated into the working day. For example, with modern e-learning modules, simulations and real-life examples.

In our Cyber Security Awareness Training for SMEs with cyber insurance, employees learn independently and review their learning progress, which is documented transparently and comprehensibly. Registering your company is as easy as this:

1. Register at zurich.sosafe.de using the personal activation code in the supplement to your cyber insurance policy. Contact your customer advisor if you can no longer find the supplementary sheet.
2. List the business email addresses of all employees who are to take part in the training.
3. Select and activate the learning modules. Your employees are automatically invited to the training.
4. You can also activate the phishing simulation if you wish. Select emails that are typical for your industry and put them on the white list so that the emails are not filtered out by the technical security measures.

The training can be adapted to the size of the company and its specific needs – from a starter package to all-around protection for larger SMEs. Many SMEs that have completed the free training report more alert, more aware employees and significantly fewer successful cyber attacks. And all this without any additional IT work.

Cyber Security Awareness Training is a key pillar of our three-stage security concept:

1. Prevent: Raising awareness and prevention through training
2. Insure: Modular insurance coverage for all relevant cyber risks
3. Intervene: 24/7 emergency assistance and expert support in the event of an emergency

With this approach and increased awareness among employees as the first and most important line of defense, you can protect your company holistically against cyber attacks. And all without much effort.

If you want to strengthen protection and improve cyber maturity, Zurich Resilience Solutions offers specialized measures: for example, cyber maturity assessments, technical security audits, and advice on guidelines, processes and emergency organization. Or with strong partners in the areas of emergency aid, forensics, law and crisis communication.

The feedback comes from a recent survey of 164 Swiss SME customers who actively use our cyber insurance and the Awareness Training. The result: 84% find the e-learning modules (very) good, 67% praise the phishing simulation, and 80% report a smooth start.

Companies attach particular importance to protection against phishing and social engineering, as well as security for critical data and email fraud.  Additional in-demand services such as vulnerability scans, penetration tests and continuous monitoring can be easily supplemented at Zurich – making employee training a real support in everyday life.