Best Cybersecurity Awareness Program
Photo Gallery
 |
Best Cybersecurity Awareness Program
Additional Info
| Job title of nominated professional (or team name) | Cybersecurity and Privacy team |
| Company (where nominated professional or team is working) | solutions by stc |
| Website | https://solutions.com.sa/ |
| Company size (employees) | 1,000 to 4,999 |
| Country | Saudi Arabia |
| Headquarters Region | Middle East |
Overview
With the rise of cybersecurity attacks and danger of privacy information breaches, an employee must be aware and learn how to protect themselves against sophisticated cyber-attacks and learn their data privacy rights. It’s part of any company’s job to create a cybersecurity awareness program to reduce these risks and raise the awareness maturity level.
In solutions we have a robust cybersecurity and privacy (CS&P) awareness program consists of a comprehensive CS&P awareness plan that was established and rolled out to improve the cybersecurity and data privacy culture across solutions covering the direct employees, contractors, consultants and customers. The awareness plan was developed to address the following expectations:
• Improve our overall security and privacy posture by identifying, prioritizing, and reducing human risk.
• Help to change identified behaviors to create secure cybersecurity and privacy culture.
• Compliance with cybersecurity national regulations and solutions policies.
• Highlight the lesson learned and reflected within the plan to build a resilient cybersecurity environment.
Our CS&P awareness plan considers employees awareness from the induction and throughout their employment journey in solutions. The plan consists of on-boarding inductions, role-based training campaigns, phishing test campaigns, awareness cybersecurity and data privacy international global month, and on-going awareness activities such as monthly posters of the latest topics of cyber and privacy.
Accomplishments
How we are different:
• Customer awareness: One main pillar of our strategy is customer engagement; we always aim to stay close to our customer. As part of our CS&P awareness plan, we engage with + 450 customers by sending them awareness posters on the latest topics of cybersecurity and privacy.
• Dashboard for monitoring and analyzing: As part of our continuous effort in improving cybersecurity and privacy practices, we utilize dashboards for our training campaigns and phishing campaigns. These dashboards provide us with easy interfaces to do a detailed assessment to assess our cybersecurity and privacy posture in solutions.
• Awareness for both cybersecurity and data privacy: Our awareness program incorporates both cybersecurity and data privacy in one plan to ensure the alignments with all required topics and the regulation requirements.
• Regular Phishing Tests: Quarterly simulations test employees' ability to identify and avoid cyberattacks. Performance is tracked and consequences exist for those who fall victim.
• Targeted Training: Employees receive customized training programs specific to their job roles, ensuring they have the knowledge to tackle the most relevant threats.
• Induction Programs: Newcomers, including executives, are equipped with essential cybersecurity and privacy knowledge through onboarding sessions. This includes their individual responsibilities in upholding company cybersecurity policies.
• Engaging Awareness Campaigns: Yearly celebrations of international cybersecurity awareness month and data privacy day keep employees informed and vigilant through dedicated events, discussions, live sessions, and even gamification with awards.
