Security Awareness and Training

In category:service-lines/consulting/cybersecurity

EY Security Awareness and training services successfully motivate and engage people in an ongoing manner. Our approach aims for long-term behavioural change by building a security-oriented organizational culture, encouraging the right mindset and involving the entire organization in the cyber awareness process.

What EY can do for you

At EY we believe successful awareness programmes motivate and engage people in an ongoing manner.

The three pillars to a successful cyber awareness programme are:

  • Awareness is a continuous effort – A “one-time” awareness exercise is unlikely to embed secure behaviours in people’s day-to-day routine. In order to be successful, an awareness programme needs to actively work on the behavioural change. The recurrence of the awareness efforts, intertwined with learning by repetition and group success, increases the chance of that change.
  • Learning does not need to be passive - Instead of a “scholar” approach, new methods of training and learning actively engage and motivate people, following gamification methods (the application of game principles to business problems). This increases engagement, helps to incentivize learners to actively participate and generates fruitful discussions about cyber security.
  • Each awareness programme is unique - Cyber awareness programmes need to be driven by the actual business risk to align with the organization’s needs and provide the best tailored solution.

Our approach aims for long-term behavioural change by building a security-oriented organizational culture, encouraging the right mindset and involving the entire organization in the cyber awareness process.

Our latest thinking

NIS2: How starting your compliance journey now will safeguard your future

New EU cybersecurity directive NIS2 will help strengthen organisational resilience in this digital age.

Why modern healthcare systems need to leverage cyber mesh architecture

The healthcare sector's digital evolution has advanced patient care while amplifying the complexity of cyber threats. Find out how.

NIS2 Directive

The NIS2 Directive is the EU-wide legislation on cybersecurity that provides legal measures to increase the overall level of cybersecurity in the EU.

How organisations can simplify the tech environment to stem cyberattacks

Bolstering cyber defences with new technologies may have the opposite effect due to added complexity. Find out why.

How a Converged Security Operations Centre can bolster cyber defence

A Converged Security Operations Centre offers greater coordination of multiple security offerings and enables a more rapid threat response. Find out how.

Transform your third parties’ risk into a competitive advantage

The organisations that succeed in this new transformative age, are those that successfully create value from risk across their business.

    Contact us
    Interested in the changes we have made here, contact us to find out more.