Cybersecurity Investigation (CSI) - Phishing Game
Experience Cybersecurity Investigation (CSI) - Phishing
Game Description
The Cybersecurity Investigation (CSI) Phishing game takes place over a remote desktop, where the investigator will comb through the email and social media accounts of various employees in the company, trying to assess where the breach occurred. They will look at various emails and posts – some of which are safe, others of which are not – and flag anything they think is suspicious. Meanwhile, a “virtual assistant” will provide feedback and additional information, as well as guide the investigator in the right direction if they need help.
The objective of this phishing awareness training game is to investigate the available assets and correctly identify safe vs. malicious messages or posts. The more accurately they identify what they see, the higher their score!
- Topic
- Anti-Phishing
- Learning Modality
- Game
- Role/Audience
- All Employees
- Language
- English Only
- Total Time
- 15 Minutes
Innovative Solution To A Common Problem
Cyberattacks are still caused by human mistakes. Attacks are increasing – especially on social media. Conventional training solutions alone aren’t working to resolve the problem. Memorizing facts and answering multiple choice questions are not activities that require sophisticated thinking skills like analyzing or evaluating something and making a decision based on your own judgments. Traditional-based courses do not provide the type of practice employees need to change real-life behavior.
Cybersecurity Investigation (CSI) -Phishing changes the learning paradigm. This gamified learning provides employees with a safe place to practice what they have learned from traditional, lecture-style courses and to demonstrate that they can actually differentiate risks from legitimate communications in everyday work situations. No presentation of facts or questions – only engaging exploration.
Phishing awareness training game enables organizations to:
- Push employees to think critically and use their analytical skills in a safe environment
- Reinforce phishing indicators taught in “lecture-style” courses, including social engineering
- Reinforce the risks of social media, which exist even if employees are not allowed to use the apps on corporate devices
This anti-phishing training game is ideal for:
- Phishing training for knowledgeable users (i.e., advanced level course)
- Remediation that doesn’t feel like punishment (for repeat clickers)
- Pretest/test-out option to bypass beginner phishing training
