The NABA-TC Cybersecurity Sub-Committee has published two papers:
WBU Social Engineering Best Practices
Social engineering has become more commonplace in the enterprise and increasingly complex to
address. Cyber criminals have become very adept at manipulating employees into handing over
sensitive or valuable enterprise information.
WBU Cybersecurity Training and Awareness
Employee training on how to detect and mitigate cybersecurity threats is critical to the on-going health of the enterprise. Comprehensive security training and awareness should be undertaken in the enterprise on a reoccurring basis and should include items such as social engineering testing, simulated phishing attacks, etc. Training should focus on implementing enterprise-wide behavioural change on the part of the employee and should be performed on an on-going, proactive basis.