SANS Security Awareness Training

The SANS Security Awareness Training, provided by the SANS Institute, aims to equip organizations of all sizes with the necessary knowledge and skills to mitigate human risk and enhance their cybersecurity posture, according to the vendor. This training is suitable for small, medium, and large businesses across various industries, including IT professionals, security professionals, developers, industrial control systems engineers, and organizations in the healthcare sector.

Key Features

EndUser Training: This training offers culturally relevant and effective computer-based modules that are designed to be easily implemented. With a diverse library of training modules covering a wide range of security topics, organizations can customize the content to meet their specific needs. The training is also available in over 34 languages.

PCI DSS Compliance Training: This training is specifically designed to address the compliance requirements of the Payment Card Industry Data Security Standard (PCI DSS). It aims to ensure that organizations' employees understand and comply with the regulations. The training covers areas such as secure payment processing, protection of cardholder data, and proper handling of sensitive information.

Phishing Platform: The vendor provides a platform that offers a simulated environment to test and enhance employees' ability to recognize and respond to phishing attacks. It includes pre-configured templates for phishing simulations, with varying levels of difficulty and support for multiple languages. In the event of simulation failure, the platform provides automated remedial training. It also offers actionable insights and reporting capabilities to track and measure the effectiveness of the phishing awareness program.

Specialized Training: The vendor offers specialized training tailored to address the unique cybersecurity challenges faced by different professions and industries. The Developer Training focuses on secure coding techniques and best practices for web application development. The ICS Engineer Training covers security behaviors for individuals involved in Industrial Control Systems. The NERC CIP Training is designed for individuals responsible for Critical Infrastructure Protection (CIP) compliance in the electric industry. The IT Administrator Training aims to provide technical teams with a comprehensive understanding of evolving security concepts and best practices.