We’re celebrating Cybersecurity Awareness Month with an informative webinar featuring three Certified Information Systems Security Professional (CISSP) vCISOs.
About Integris: Integris provides premium technology solutions for businesses across the country. [ Ссылка ]
Timestamps
00:00 Introduction
00:32 What is social engineering?
01:00 Is social engineering a priority for leaders?
02:09 Missing component of pentesting: social engineering
03:30 Vishing overview
04:26 Industries and locations that deal with tailgaiting
05:26 For industries/organizations that don't have data centers
06:01 Pretexting: Leadership view
07:36 Pretexting: Example scenario
11:54 Emotional driver #1: Transitive authority
13:51 Emotional driver #2: Fear and urgency
15:06 How to spot and stop a phishing attack
15:36 Working with employees with potential phishing emails
16:33 "There is no deterrent:" Company culture surrounding phishing and prep
18:21 Take a breath
19:11 Beware odd requests
21:23 Grammatical errors
21:59 Use of AI in phishing
23:14 Investigation
24:37 Advice for organizations
24:43 Governance
25:30 Be intentional
27:24 Adherence starts at the top
29:11 Security Awareness Training
30:46 Doing Security Awareness Training in practice
33:37 Security is an investment
36:22 Security is a moneymaker
38:55 The statistics behind social engineering
44:48 Q: Dealing with spam on mobile devices
47:45 Q: AI and social engineering
49:27 Q: Investigating suspicious messages
50:47 Q: Preventing spoofing
51:31 Q: What happens when you click on a link in a phishing email?
52:41 Q: Personal emails linked to professional
53:40 Q: Scaling Security Awareness Training to industry and size
54:21 Q: Dealing with information released in data breaches
56:48 Ending goodbyes
