The 5 most frequently asked questions about Security Awareness Training

At the Cyber Resilience Centre, we deliver security awareness training to help keep our businesses community safe. Security Awareness Training includes a continuously evolving set of topics. Here, we’ve compiled answers to some of the most common questions we get about Security Awareness Training from businesses.

  1. What is security awareness training?

  2. Why is it important to support my staff with security awareness training?

  3. What is the first step in starting security awareness training?

  4. How often should my staff undergo security awareness training?

  5. What is the best method for delivering security awareness training?

What is security awareness training?


Security awareness training provides simple and effective knowledge for people to understand their working environment and provides the confidence to employees so they have the confidence to challenge when something doesn’t look right.


Security awareness training is focused on those with little or no cyber security or technical knowledge and is delivered in small, succinct modules using real-world examples.


Security awareness training is tailored to each individual audience to provide the right level of skills and context for your business. At the Cyber Resilience Centre, we use cyber security trainers who are highly knowledgeable, personable and friendly and pride themselves on providing the right environment for your people to feel comfortable and to ask questions.


Language within the cybersecurity sector can often appear confusing and inaccessible. Here are some explanations of the more common terms and Frequently Asked Questions.


Why is it important to support my staff with security awareness training?


Security awareness training is critical because cybercrime can affect any size and kind of business – think when, not if. Threats are continually changing, your employees are the biggest target in your business. Hackers know staff can be soft targets and with the right methods be exploited to hand over data and money.


Staff are your front line of defence. The majority of attacks rely on some form of human error. For example, a simple Phishing attack can open the door to many other attacks such as ransomware, invoice hijacking etc. It's vital that all staff members are aware of how attackers operate and are on high alert when noticing suspicious activity.


The 2021 Cyber Security Breaches Report found that just 34% of companies manage cyber security risks through cyber risk assessments, and only 32% of businesses are monitoring staff activities.


The average annual cost for businesses is £8,460, which includes lost data or assets after breaches, showing the continued need for security awareness training.


The key to security awareness training is to equip all your employees with a level of awareness to combat these threats. Employees need to be taught what clues to look for that indicate threats, and how to respond when they see them.

What is the first step in starting security awareness training?


There’s no short-term technological fix for cybersecurity and criminals are in a never-ending race to one-up each other. The best long-term, cost-effective answer for your business is to provide cybersecurity awareness training that develops and embeds a culture in your organisation.


The Cyber Resilience Centre can offer your staff security awareness training to provide simple and effective knowledge so your staff understand their environment and give them the confidence to challenge when something doesn’t look right.


How often should my staff undergo security awareness training?


Its important business is kept secure by implementing regular security awareness training with your workforce. With such an evolving threat landscape in cyber security, it’s important you’re topping up on your staff’s knowledge every 6-12 months.


What is the best method for delivering security awareness training?


The Cyber Resilience Centre can deliver your staff security awareness training through a half-day session either online or in-person in your office (covid rules permitting). The security awareness training session is interactive for attendees and builds upon key learnings through examples specific to your business and the industry you work in.


Ready to prepare your staff with security awareness training? Contact us today to learn more.

The contents of this website are provided for general information only and are not intended to replace specific professional advice relevant to your situation. The intention of Cyber Resilience Centre for Greater Manchester (CRCGM) is to encourage cyber resilience by raising issues and disseminating information on the experiences and initiatives of others.  Articles on the website cannot by their nature be comprehensive and may not reflect most recent legislation, practice, or application to your circumstances. CRCGM provides affordable services and Trusted Partners if you need specific support. For specific questions please contact us.

CRCGM does not accept any responsibility for any loss which may arise from reliance on information or materials published on this website. CRCGM is not responsible for the content of external internet sites that link to this site or which are linked from it.