Security Training Doesn’t Have to Suck
We’ve all spent way too many years falling asleep to sitting through boring videos seemingly made in the 1900s–that you can’t speed up or click through–followed by a “quiz” that doesn’t prove anything.
That’s why we decided to implement the Anagram Security platform this year. We went even further than blowing some minds with content: we offered those who took action in the first two weeks a test-out option. If you know the material, why do we need to waste your time? For staff who didn’t take advantage of our limited-time offer, they saw a series of five one-minute videos that fit our corporate culture, followed by hands-on, experiential assessments Anagram calls “puzzles” that truly discerned whether the user met learning objectives.
The effect was immediate. Numerous employees expressed their rabid fandom right off the bat, including one who said, “I wouldn’t mind taking that again!” (When was the last time your employees asked to re-take Annual Security Training??) Many, many messages of appreciation were sent, thanking us for saving them from boring and tedious training: “a huge round of applause for security training content that’s actually fun! WOW!” Our own Security Engineers were taken aback:
“genuinely wild to see this much positive feedback for training.”
Additionally, during Cybersecurity Awareness Month in October, we unveiled our first “Phish Fry.” We created a contest that taught and tested employees how to spot and report social engineering threats. We believe in celebrating and rewarding those who report (in an incident, this would help contain the blast radius), not in “tricking” or punishments.
We take Security extremely seriously here at Postman, and that includes coming up with new ways to break through the noise our employees face so they can stay up-to-date on the latest threats to protect your data. Our employees’ enthusiastic appreciation says it all!