A company is planning to run a security awareness campaign that focuses on identifying email threats. Which option would be the BEST to include in the campaign to effectively educate employees on recognizing and reporting potential phishing attempts?
Distributing a monthly newsletter that covers various topics, including a brief section on email security.
Hosting a quarterly security seminar that covers a range of security awareness topics, including phishing.
Conducting tailored phishing exercises with immediate feedback for employees who fall for the simulated attack.
Sending out a company-wide email with a list of tips for identifying phishing emails.
|Security Program Management and Oversight
|Threats, Vulnerabilities, and Mitigations
|General Security Concepts