Knowledge base for security awareness, phishing and NIS2
The 2LRN4 knowledge base is built for topical authority. It includes 149 in-depth articles on phishing, employee behavior, NIS2, security awareness strategy and incidents or data breaches.
Employee behavior
API security awareness for end users
Practical guidance on api security awareness for end users for organizations that want to improve secure behavior structurally.
Behavior change in security awareness
Practical guidance on behavior change in security awareness for organizations that want to improve secure behavior structurally.
Clean desk policy explained
Practical guidance on clean desk policy for organizations that want to improve secure behavior structurally.
Cloud security basics for end users
Practical guidance on cloud security basics for end users for organizations that want to improve secure behavior structurally.
Device security basics
Practical guidance on device security basics for organizations that want to improve secure behavior structurally.
Employees are more digitally skilled than you think
Never underestimate your employees' digital skill, at most underestimate how poorly we sometimes explain things. Treat people as professionals and your weakest link becomes your strongest defence.
How do I get employees to actually take security training?
Practical guidance on getting employees to take security training for organizations that want to improve secure behavior structurally.
How do I make security training engaging?
Practical guidance on making security training engaging for organizations that want to improve secure behavior structurally.
How to build a security culture
Practical guidance on security culture for organizations that want to improve secure behavior structurally.
How to engage employees in security awareness
Practical guidance on how to engage employees in security awareness for organizations that want to improve secure behavior structurally.
How to secure the mobile workplace
Practical guidance on secure the mobile workplace for organizations that want to improve secure behavior structurally.
Implementing multi-factor authentication in your organisation
Multi-factor authentication is one of the most effective measures against account takeover. This is how to roll it out step by step, without too much friction or unclear exceptions derailing the project.
Incident reporting without blame
Practical guidance on incident reporting without blame for organizations that want to improve secure behavior structurally.
Microlearning for employees with limited time
Practical guidance on microlearning for employees for organizations that want to improve secure behavior structurally.
Password management best practices
Practical guidance on password management best practices for organizations that want to improve secure behavior structurally.
Physical security awareness in the workplace
Practical guidance on physical security awareness for organizations that want to improve secure behavior structurally.
Recognising personal data in your daily work
Privacy starts with recognition. Once you know which data is personal data, you handle it more carefully by default. A practical guide for your daily work.
Security awareness in education
Practical guidance on security awareness education for organizations that want to improve secure behavior structurally.
Security awareness in onboarding new employees
The most underrated awareness opportunity is onboarding. Why the first weeks set the tone, why a simple welcome video beats a glossy e-learning, and how it becomes a flywheel.
Security awareness onboarding for teachers and staff
Practical guidance on security awareness onboarding education for organizations that want to improve secure behavior structurally.
Use mobile data or secure Wi-Fi while travelling
Free public Wi-Fi is convenient but risky for work email and sensitive accounts. Why mobile data is almost always safer, how to recognise public networks, and what to give your employees concretely.
What are the most common security mistakes employees make?
Practical guidance on common security mistakes employees make for organizations that want to improve secure behavior structurally.
What to do with a privacy request from a customer or colleague
Someone asks what data you hold on them, or wants it deleted. What are data subjects' rights under the GDPR, and what do you, as an employee, do when such a request reaches you?
When a VPN for employees does and doesn't help
Practical guidance on vpn for employees for organizations that want to improve secure behavior structurally.
When gamification in awareness backfires
Gamification only motivates when the game is about safety, not about points. Why the score can crowd out safe behaviour, and how to use game elements well.
When gamification works in awareness
Practical guidance on gamification in awareness for organizations that want to improve secure behavior structurally.
Why employees click on phishing
Practical guidance on why employees click on phishing for organizations that want to improve secure behavior structurally.
Why employees do not report security incidents
An employee who does not report is not a risk but a symptom of a culture that punishes. Why reporting must be easy and safe, and how to build a reporting culture.
Why security awareness lands faster in private life
Practical guidance on security awareness private life for organizations that want to improve secure behavior structurally.
Why small behavior interventions often have bigger impact
Practical guidance on behavior interventions security awareness for organizations that want to improve secure behavior structurally.