20 Feb Case Study: Department of Homeland Security floored by NINJIO results
The Situation: A company’s cybersecurity defense system is only as strong as its weakest employee. In fact, according to Verizon’s 2018 Data Breach Investigations Report, “93% of data breaches are caused by human error.” Aware of this vulnerability, a leading global Consumer Packaged Goods company chose to work with NINJIO to advance its mission of spreading security awareness throughout its organization.
The Results: Classified as a “critical infrastructure” organization, the leading CPG brand is eligible for free security testing programs provided through the Department of Homeland Security (DHS), including internal and external penetration testing and network security audits.
To test the effectiveness of NINJIO’s training and evaluate the overall security IQ among employees, the client worked with the DHS to launch a simulated phishing attack on 600 random employees. The results were a testament to the power of engaging, compelling security awareness content in changing behavior: 599 out of 600 passed. In other words, only ONE person took the bait.
The Bottom Line: The client and DHS reported being “floored by the results.” With only a 0.17% click-rate, the employees demonstrated not only a general security awareness but a security mindset. Their mission of developing a security-first culture was a success, and after the simulation, they had the data to prove it.
Check out the entire case study here.