Educause Security Discussion mailing list archives
Re: A user granted with admin rights failed a phishing test
From: Hiram Wong <hiram.wong () DOMAIL MARICOPA EDU>
Date: Mon, 9 Nov 2020 10:19:21 -0700
Hi Jared, I think, at least partially, your reaction should be dependent on how many times the particular user fails the phishing test. You can escalate and increase the requirements with each additional failure of your phishing test. I would also consider notifying their immediate supervisor and escalating as needed. Hope this helps. Hiram On Mon, Nov 9, 2020 at 8:20 AM Jared Evans <jared.evans () gallaudet edu> wrote:
Hello, I would ask about what actions are typically taken when a user who has been granted admin rights (limited to few workstations within their workspace) failed a phishing test with the user giving out the user credentials. Additional cybersecurity training is a given but are the admin rights temporarily revoked until the training is completed? -- Jared Evans Information Security Officer Gallaudet Technology Services Gallaudet University jared.evans () gallaudet edu ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
-- [image: eSig Logo] Hiram Wong, CISA, CISM Internal Audit 2411 West 14th Street, Tempe AZ 85281 phone | 480-731-8827 email | @domail.maricopa.edu website | https://www.maricopa.edu [image: eSig facebook] <https://www.facebook.com/maricopa.edu>[image: eSig twitter] <https://twitter.com/mcccd>[image: eSig linkedin] <https://www.linkedin.com/company/maricopa-community-colleges>[image: eSig youtube] <https://www.youtube.com/user/themcccdEDU>[image: eSig instagram] <https://instagram.com/maricopacc/> [image: facebook] <http://www.facebook.com/maricopa.edu> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
Current thread:
- A user granted with admin rights failed a phishing test Jared Evans (Nov 09)
- Re: A user granted with admin rights failed a phishing test Hiram Wong (Nov 09)
- Re: A user granted with admin rights failed a phishing test Apollo Dalamar (Nov 09)
- Re: A user granted with admin rights failed a phishing test Jerry Tylutki (Nov 09)
- Re: A user granted with admin rights failed a phishing test Ken Munro (Nov 09)
- Re: A user granted with admin rights failed a phishing test Rob Milman (Nov 09)
- Re: A user granted with admin rights failed a phishing test Dave Broucek (Nov 09)
- Re: A user granted with admin rights failed a phishing test randy (Nov 09)
- Re: A user granted with admin rights failed a phishing test Jerry Tylutki (Nov 09)
- <Possible follow-ups>
- Re: A user granted with admin rights failed a phishing test Smith, Jason (Nov 09)