Employee Risk Management (ERM)
Transform employees into your
first line of defense
Calculate, reduce and monitor human cyber risk with the new-class of user-focused security
CUSTOMER CHALLENGE
Why Employee Risk Management (ERM)?
● Employee are targets
36% of data breaches involve phishing,
29% increase in phishing incidents from 2021,
92% of organizations have fallen victim to phishing attacks in 2022
● Employee make mistakes
Human error is a key factor in over 90% of data breaches.
● Compliance is essential
Key standards like ISO 27001 require regular security awareness training.
Your one-stop solution for a security-savvy workforce
Understand and strengthen your business's security posture against human error and user-targeted attacks through ongoing ERM.
Drive security awareness
Train staff on modern security best practices through engaging security awareness courses.
Combat phishing attacks
Empower users with the ability to spot, avoid and report even the most sophisticated phishing attacks.
Implement security standards
Keep staff well-versed on company security procedures with core policy templates and trackable approvals.
Reduce human error
Educate staff on how to avoid common mishaps like sending sensitive data to the wrong person.
Safeguard exposed users
Reduce the chances of an attack by detecting when user credentials are stolen and exposed on the dark web.
Demonstrate compliance
Showcase your compliance efforts with real-time reporting on how your business is addressing human risk.
1
Mc2 Simulated Phishing
- intuitive cloud-based phishing software that enables you to quickly assess user vulnerability towards real-world phishing attacks.
- able to identify which users are susceptible to both common forms of phishing and highly-targeted forms of 'spear phishing'
2
Mc2 Security Awareness Learning
- user-focused security awareness training solution that helps organisations drive secure employee behaviour.
- Packed with an extensive library of interactive, video and blog-style content, offers engaging and continuous computer-based training - easily managed through intelligent automation.
3
Mc2 Dark Web Breach
- quickly identify exposed employee email accounts and identities that have been publicly disclosed online via third-party data breaches.
- With billions of credentials present in data dumps, paste sites and hacking forums, employees that sign up to third-party services with their work email address could be leaving your organisation at huge risk of social engineering, business email compromise (BEC) and other damaging attacks.
4
Mc2 IT Policy Management
- easily create and manage your company's policies.
- Having the right policies is essential for protecting your company. Policies help you set out your expectations for your employees in terms of security and their conduct in the workplace, as well as meeting compliance requirements and reducing risks.
Employee
Risk Management Modules
Aimed at building a security culture and driving secure behaviour
Engaging micro-training, tailored to each users unique risk areas
Ongoing risk is calculated through multiple data points
Key Features
01.
Security Awareness Training
Bite-sized video and interactive training courses that cover core infosec and compliance topics
02.
Simulated Phishing
Trackable simulated phishing campaigns with readily-made and custom templates.
03.
Dark Web Monitoring
Dark web scanning that detects exposed user data that could be leveraged for a cyber attack.
04.
Policy Management
Centralised pre-loaded policy library that simplifies and tracks employee signature approvals
05.
Employee Risk Scoring
Company-wide human risk scoring that fuses all reporting metrics into one easy-to-digest tracker
06.
In-Depth Risk Analytics
Dig deep into human cyber risk with user performance profiles, trends and custom segments