PreParanoia: Erlend Andreas Gjære

Erlend Andreas Gjære is a specialist in security and people, and co-founder of the award-winning security software company Secure Practice. In addition to software and business development, his interests are focussed on human factors for information security, including security awareness, training and culture, risk, behavior and user experiences.

 Experiences with simulated phishing

Is it okay to trick your own colleagues? With simulated phishing, this is precisely what we do, when sending employees fake emails to increase their awareness. Maybe you have tried something like this in your company already, or maybe you are still assessing whether this is really a good idea or not. In any case, this talk will offer useful steps to prepare and launch your own internal phishing campaign. We will also discuss how to measure and get value from the results, including on the long term, and how to ensure all of this is done in a privacy friendly way with «teachable moments» for everyone.