All new employees receive onboarding and systems training. This training is completed annually by employees and training compliance is monitored.
Security training is conducted by our CTO and executed via our compliance management platform, Drata. The main topics covered in security training are:
Social engineering – primarily phishing and how to detect and report attacks.
Passwords – background in how passwords are cracked, why strong passwords are important, and storage recommendations for passwords.
Physical Security – guidelines for maintaining the physical security of offices and equipment.
Data Handling – understanding data classification and how to properly handle such data.
Compliance – its importance and how it affects operations.