Knowledge base for security awareness, phishing and NIS2
The 2LRN4 knowledge base is built for topical authority. It includes 50 in-depth articles on phishing, employee behavior, NIS2, security awareness strategy and incidents or data breaches.
Phishing
What is phishing?
Practical guidance on what is phishing for organizations that want to improve secure behavior structurally.
Phishing red flags employees should know
Practical guidance on phishing red flags for organizations that want to improve secure behavior structurally.
Spear phishing examples from real organizations
Practical guidance on spear phishing examples for organizations that want to improve secure behavior structurally.
How to spot CEO fraud and prevent it
Practical guidance on how to spot CEO fraud for organizations that want to improve secure behavior structurally.
Smishing and vishing risks are growing
Practical guidance on smishing and vishing for organizations that want to improve secure behavior structurally.
QR phishing and physical social engineering
Practical guidance on qr phishing for organizations that want to improve secure behavior structurally.
Why phishing simulations work
Practical guidance on why phishing simulations work for organizations that want to improve secure behavior structurally.
When phishing simulations backfire
Practical guidance on when phishing simulations backfire for organizations that want to improve secure behavior structurally.
Phishing KPIs that actually matter
Practical guidance on phishing KPIs for organizations that want to improve secure behavior structurally.
Why a leadership video after phishing creates more impact
Practical guidance on leadership video phishing simulation for organizations that want to improve secure behavior structurally.
Vendor fraud by email explained
Practical guidance on vendor fraud for organizations that want to improve secure behavior structurally.
Safe payment verification procedures
Practical guidance on payment verification procedures for organizations that want to improve secure behavior structurally.
Phishing risks in healthcare: what you should and should not measure
Practical guidance on phishing risks healthcare for organizations that want to improve secure behavior structurally.
Phishing and account abuse in education
Practical guidance on phishing education for organizations that want to improve secure behavior structurally.
Phishing follow-up in the public sector
Practical guidance on phishing follow-up public sector for organizations that want to improve secure behavior structurally.
Employee behavior
Why employees click on phishing
Practical guidance on why employees click on phishing for organizations that want to improve secure behavior structurally.
Behavior change in security awareness
Practical guidance on behavior change in security awareness for organizations that want to improve secure behavior structurally.
Why management buy-in makes awareness stronger
Practical guidance on management buy-in awareness for organizations that want to improve secure behavior structurally.
How to engage employees in security awareness
Practical guidance on how to engage employees in security awareness for organizations that want to improve secure behavior structurally.
Microlearning for employees with limited time
Practical guidance on microlearning for employees for organizations that want to improve secure behavior structurally.
Security awareness for onboarding new employees
Practical guidance on security awareness onboarding for organizations that want to improve secure behavior structurally.
Incident reporting without blame
Practical guidance on incident reporting without blame for organizations that want to improve secure behavior structurally.
How to build a security culture
Practical guidance on security culture for organizations that want to improve secure behavior structurally.
How to secure the mobile workplace
Practical guidance on secure the mobile workplace for organizations that want to improve secure behavior structurally.
Clean desk policy explained
Practical guidance on clean desk policy for organizations that want to improve secure behavior structurally.
When gamification works in awareness
Practical guidance on gamification in awareness for organizations that want to improve secure behavior structurally.
Why security awareness lands faster in private life
Practical guidance on security awareness private life for organizations that want to improve secure behavior structurally.
Why small behavior interventions often have bigger impact
Practical guidance on behavior interventions security awareness for organizations that want to improve secure behavior structurally.
Security awareness in education
Practical guidance on security awareness education for organizations that want to improve secure behavior structurally.
Security awareness onboarding for teachers and staff
Practical guidance on security awareness onboarding education for organizations that want to improve secure behavior structurally.
NIS2 and compliance
What is NIS2 awareness?
Practical guidance on what is NIS2 awareness for organizations that want to improve secure behavior structurally.
NIS2 awareness checklist for organizations
Practical guidance on NIS2 awareness checklist for organizations that want to improve secure behavior structurally.
NIS2 roles and responsibilities around awareness
Practical guidance on NIS2 roles awareness for organizations that want to improve secure behavior structurally.
How to write a security awareness policy
Practical guidance on security awareness policy for organizations that want to improve secure behavior structurally.
How to collect audit evidence for awareness
Practical guidance on audit evidence awareness for organizations that want to improve secure behavior structurally.
ISO 27001 awareness requirements explained
Practical guidance on ISO 27001 awareness requirements for organizations that want to improve secure behavior structurally.
Connecting breach reporting and awareness
Practical guidance on breach reporting awareness for organizations that want to improve secure behavior structurally.
AI governance and awareness in one program
Practical guidance on AI governance awareness for organizations that want to improve secure behavior structurally.
Supplier security awareness in the supply chain
Practical guidance on supplier security awareness for organizations that want to improve secure behavior structurally.
Board reporting for awareness without noise
Practical guidance on board reporting awareness for organizations that want to improve secure behavior structurally.
NIS2 awareness for healthcare organizations
Practical guidance on NIS2 awareness healthcare for organizations that want to improve secure behavior structurally.
Board reporting and awareness in the public sector
Practical guidance on board reporting public sector awareness for organizations that want to improve secure behavior structurally.
Security awareness strategy
What is security awareness?
Practical guidance on what is security awareness for organizations that want to improve secure behavior structurally.
What is security awareness elearning?
Definition and practical guidance for teams that want to understand when elearning fits within an awareness approach.
Security awareness elearning vs standalone training
Comparison for organizations choosing between a structural elearning approach and standalone awareness sessions.
How much does security awareness elearning cost?
Practical guidance on how much does security awareness elearning cost for organizations that want to improve secure behavior structurally.
How to measure security awareness
Practical guidance on how to measure security awareness for organizations that want to improve secure behavior structurally.
How to build a security awareness program
Practical guidance on build a security awareness program for organizations that want to improve secure behavior structurally.
Why awareness programs fail
Practical guidance on why awareness programs fail for organizations that want to improve secure behavior structurally.
Why security awareness often fails
Practical guidance on why security awareness often fails for organizations that want to improve secure behavior structurally.
Security awareness roadmap for 12 months
Practical guidance on security awareness roadmap for organizations that want to improve secure behavior structurally.
How to choose security awareness content
Practical guidance on choose security awareness content for organizations that want to improve secure behavior structurally.
Awareness for HR and onboarding
Practical guidance on awareness for HR and onboarding for organizations that want to improve secure behavior structurally.
Security awareness KPIs for CISOs
Practical guidance on security awareness KPIs for organizations that want to improve secure behavior structurally.
A communication plan for security awareness
Practical guidance on security awareness communication plan for organizations that want to improve secure behavior structurally.
Localizing security awareness content
Practical guidance on localizing security awareness content for organizations that want to improve secure behavior structurally.
How to choose a security awareness platform
Practical guidance on choose a security awareness platform for organizations that want to improve secure behavior structurally.
Security awareness in healthcare
Practical guidance on security awareness healthcare for organizations that want to improve secure behavior structurally.
Security awareness for government and municipalities
Practical guidance on security awareness government for organizations that want to improve secure behavior structurally.
Incidents and data breaches
Common data breach scenarios in organizations
Practical guidance on common data breach scenarios for organizations that want to improve secure behavior structurally.
Employee incident response explained
Practical guidance on employee incident response for organizations that want to improve secure behavior structurally.
Ransomware and employee behavior
Practical guidance on ransomware employee behavior for organizations that want to improve secure behavior structurally.
Accidental data sharing: how to prevent it
Practical guidance on accidental data sharing for organizations that want to improve secure behavior structurally.
Lost devices and reporting duties
Practical guidance on lost devices reporting for organizations that want to improve secure behavior structurally.
How to recognize MFA fatigue attacks
Practical guidance on MFA fatigue attacks for organizations that want to improve secure behavior structurally.
Business email compromise explained
Practical guidance on business email compromise for organizations that want to improve secure behavior structurally.
Recognizing insider risk signals early
Practical guidance on insider risk signals for organizations that want to improve secure behavior structurally.
Shadow IT risks for awareness and governance
Practical guidance on shadow IT risks for organizations that want to improve secure behavior structurally.
Incident lessons from remote work
Practical guidance on remote work incident lessons for organizations that want to improve secure behavior structurally.