Knowledge base for security awareness, phishing and NIS2
The 2LRN4 knowledge base is built for topical authority. It includes 149 in-depth articles on phishing, employee behavior, NIS2, security awareness strategy and incidents or data breaches.
Security awareness strategy
A communication plan for security awareness
Practical guidance on security awareness communication plan for organizations that want to improve secure behavior structurally.
Awareness for HR and onboarding
Practical guidance on awareness for HR and onboarding for organizations that want to improve secure behavior structurally.
Awareness programmes fail without a risk analysis
If you train on everything, nobody learns what really matters. Why role-based segmentation, built on a risk analysis, makes awareness shorter, sharper and more effective.
Cyber charlatans: beware of fear sellers in awareness
Whoever sells awareness with fear sells not safety but dependence. How to recognise fear sellers and why real awareness builds competence, not panic.
How long should security training take?
Practical guidance on how long security training for organizations that want to improve secure behavior structurally.
How much does security awareness elearning cost?
Practical guidance on how much does security awareness elearning cost for organizations that want to improve secure behavior structurally.
How often should employees take security training?
Practical guidance on how often security training for organizations that want to improve secure behavior structurally.
How to build a security awareness program
Practical guidance on build a security awareness program for organizations that want to improve secure behavior structurally.
How to choose a security awareness platform
Practical guidance on choose a security awareness platform for organizations that want to improve secure behavior structurally.
How to choose between SCORM and a standalone awareness platform
Practical guidance on scorm vs standalone awareness platform for organizations that want to improve secure behavior structurally.
How to choose security awareness content
Practical guidance on choose security awareness content for organizations that want to improve secure behavior structurally.
How to measure security awareness
Practical guidance on how to measure security awareness for organizations that want to improve secure behavior structurally.
Localizing security awareness content
Practical guidance on localizing security awareness content for organizations that want to improve secure behavior structurally.
Security awareness and customer trust
Practical guidance on security awareness customer trust for organizations that want to improve secure behavior structurally.
Security awareness elearning vs standalone training
Comparison for organizations choosing between a structural elearning approach and standalone awareness sessions.
Security awareness for government and municipalities
Practical guidance on security awareness government for organizations that want to improve secure behavior structurally.
Security awareness in healthcare
Practical guidance on security awareness healthcare for organizations that want to improve secure behavior structurally.
Security awareness KPIs for CISOs
Practical guidance on security awareness KPIs for organizations that want to improve secure behavior structurally.
Security awareness roadmap for 12 months
Practical guidance on security awareness roadmap for organizations that want to improve secure behavior structurally.
Security awareness ROI: what does it actually deliver?
Practical guidance on security awareness ROI for organizations that want to improve secure behavior structurally.
Security awareness stays 'an IT thing'
Security feels technical until you show it happens in your own pocket every day. Why recognition, not technology, drives behaviour change, and how to make security everyone's.
Security awareness vendor selection: the right questions
Practical guidance on security awareness vendor selection for organizations that want to improve secure behavior structurally.
The pitfall of the baseline survey in awareness
A baseline nobody dares to discuss is not a measurement but a reckoning. Why a baseline survey only works when it feels safe, and how to turn it into a starting point.
What is security awareness elearning?
Definition and practical guidance for teams that want to understand when elearning fits within an awareness approach.
What is security awareness?
Practical guidance on what is security awareness for organizations that want to improve secure behavior structurally.
What the shrinking time-to-exploit means for your organisation
The time-to-exploit is shrinking from a year to just over a day, and possibly to hours. What that means for your IT, your organisation and your security awareness programme.
Which topics should a security training cover?
Practical guidance on topics security training employees for organizations that want to improve secure behavior structurally.
Why awareness programs fail
Practical guidance on why awareness programs fail for organizations that want to improve secure behavior structurally.
Why security awareness collapses during busy periods
Awareness does not collapse because of busyness, but because of plans that pretend the busyness does not exist. How to plan smarter, not do more.
Why security awareness often fails
When fewer than 1% of staff take part, it is rarely the training content. Awareness is change management: meaning, leadership and rhythm decide whether it lands.