Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Phishing and Security Awareness Training - Faculty

From: Valerie Vogel <vvogel () EDUCAUSE EDU>
Date: Tue, 12 Apr 2016 23:38:11 +0000
Hi Stefan,

Your question is very timely.

The HEISC Awareness & Training working group just published a short paper on phishing simulation campaigns:
https://library.educause.edu/resources/2016/4/phishing-simulation-programs

In addition to Brad Judy’s guest blog that you mention below, we will soon be publishing a guest blog from Eastern 
Michigan about their phishing efforts. (Likely available in ~2 weeks.)

We also have another guest blog on phishing (http://er.educause.edu/blogs/2016/3/april-dont-get-hooked) that is part of 
our 2016 Campus Security Awareness Campaign (http://www.educause.edu/securityawareness).

If you will be at the 2016 Security Professionals Conference in Seattle next week, there will be several opportunities 
to discuss phishing with your peers: a BOF session on Monday, April 18 (8-10 pm), a lunchtime roundtable on Tuesday, 
April 19 (12-1:30 pm), and several sessions on Tuesday with a focus on awareness and training.

I hope you find these resources useful as you continue this discussion with the community.

Kind regards,
Valerie

Valerie Vogel Program Manager

EDUCAUSE
Uncommon Thinking for the Common Good
direct: 202.331.5374 | main: 202.872.4200 | twitter: @HEISCouncil | educause.edu<http://www.educause.edu/>

From: EDUCAUSE Listserv <SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>> on behalf of 
"Sburlea, Stefan" <sburlea () CHAPMAN EDU<mailto:sburlea () CHAPMAN EDU>>
Reply-To: EDUCAUSE Listserv <SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>>
Date: Tuesday, April 12, 2016 at 4:09 PM
To: EDUCAUSE Listserv <SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>>
Subject: [SECURITY] Phishing and Security Awareness Training - Faculty

Hello,

We are looking at starting a phishing/security awareness training.
We are considering something like Wombat Security or GoPhish.

Did you do something similar at your university and if yes, did you receive any negative feedback from your staff and 
faculty?
What solution/vendor did you use?

Searching through Educause archives, I found this great 10 point implementation checklist/guide : 
http://er.educause.edu/blogs/2016/4/phishing-your-users

Any insight is greately appreciated.


Thank you,

Stefan Sburlea

Chapman University, IS&T
Information Security Specialist
sburlea () chapman edu<mailto:sburlea () chapman edu>
Desk Phone: 714-744-7802
Chapman University I One University Drive I Orange, California 92866
UNIVERSITY STAFF WILL NEVER ASK FOR YOUR PASSWORD - DO NOT SHARE YOUR PASSWORD WITH OTHERS!
Previous By Date Next
Previous By Thread Next

Current thread: