Introduction
This tutorial will guide you through setting up the Guide product to best suit your organisation.
Pre-requisites
You must have allow listed with your mail server and gateway
Steps
Decide on approach and which modules to assign
Customise content:
Add annotations
Add advice cards, goals and alerts
Prepare communications
Send out learning campaign(s)
Send out nudges
Analyse reporting and metrics
Step-by-step guide
Step 1: Decide on approach and which modules to assign
Risk- Do you want to focus on risk area? If so, risk area by organisation as a whole, or by department?
Department: Do you want to focus on different departments and what is relevant to them?
Compliance: Do you have regulatory requirements that will define how you assign learning?
Baseline: Do you want to run baseline learning for all users?
Risk | If you already know which risk areas you would like to target, take a look in our module library on those most suitable.
If you would like to know more about the risk areas in your organisation then take a look under Reports > Risk. If you haven’t already, make sure you have entered your impact settings. |
Department | If you would like to deliver focused training depending on groups then take a look at the module library and decide which groups should get which modules (eg. our video module for software engineers). Remember, we also have role specific training eg. a video module for senior leaders. |
Baseline | If you would rather send out a baseline collection of modules across your organisation, then either select the modules you wish or use the following guidance:
Data Privacy Modules GDPR, HIPAA, DORA- our learning modules include information that helps Data Privacy teams meet ICO compliance requirements to educate on GDPR etc.
OWASP Module- Baseline Secure Coding for Developers requirement may not be owned by the Security Culture
Other good baseline modules: Social Engineering CybEssentials Ransomware Am I really a Target? |
Recommendations for assigning modules:
Try not to include more that 3 modules in a baseline campaign.
A maximum of 4 or 5 modules per person across all campaigns.
Example. Person is a privileged user.
Send out: 3 modules in Baseline Campaign, 1 more in Privileged User Campaign. The user will have 4 modules total.Try to send out a single module per quarter with refresher tests enabled.
Step 2: Customise content
We recommend adding annotations to your learning modules- see here for more help with annotations and our recommendations.
Additionally, see here for more ways to use the additional features of Guide (advice cards, goals and alerts)
Step 3: Prepare communications
See our admin toolkit for more guidance.
Step 4: Send out learning campaign(s)
Step 5: Send out nudges (for GUIDE+ and RESPOND customers)
Nudges are designed to influence behaviour. Engage your users by sending out nudges to encourage them to complete training, use advice cards etc. Check out our seasonal content which you can schedule. This will reduces workload and helps automate cyber communications, support learning and increase user engagement with cyber security.
