Your company has recently rolled out a new security awareness training program focused on recognizing social engineering attacks. To ensure the effectiveness of the training, what is the MOST effective method to evaluate employee understanding and application of the training content?
Conducting unannounced phishing simulation campaigns
Including a quiz at the end of the training session
Publishing a quarterly newsletter highlighting social engineering threats
Unannounced network scans after training completion