Awareness technology
IT-Seal Awareness Engine
Training according to needs. Fully automated.
The IT-Seal Awareness Engine forms the technological heart of your Awareness Academy in the auto pilot. It evaluates the security behaviour of your participants live and decides based on that which groups of participants will receive further training and to what extent. Each participant thus receives exactly as much training as necessary, but at the same time as little as possible.
Employee Security Index (ESI®)
The ESI® makes awareness measurable.
The ESI® is a security awareness indicator and makes the IT security awareness of your employees measurable. It was scientifically developed and offers a high comparability and reliability due to its standardization. Compare not only your departments with each other, but also your entire company with other companies in the same industry. Even before-and-after measurements are no problem to evaluate the success of awareness measures. More information about ESI®.
By downloading the video you accept the YouTube privacy policy.
Learn more
Unser Erklärvideo stellt Ihnen den ESI in 100 Sekunden vor.
OSINT analysis as attack potential analysis and basis for spear phishing mails
PATENTED Spear-Phishing-Engine
Evaluate publicly accessible data of your employees and use it for real spear phishing.
Today's phishing emails are becoming increasingly sophisticated. In preparation for spear phishing attacks, attackers collect information from publicly available sources to obtain a comprehensive picture of the target person (Open Source Intelligence, OSINT for short). The patented IT-Seal Spear Phishing engine allows spear phishing e-mails to be sent at various levels of difficulty and based on OSINT information. Like a real attacker, we use the collected data to make our social engineering simulation even more accurate. Alternatively, we can automatically simulate targeted attacks without OSINT by providing less information (department, position).
COMPANY OSINT
Using freely available company information for spear phishing.
Complementing our patented spear phishing engine, we collect not only the publicly available information of your employees, but also that of your company. We automatically search your company profiles on employer rating portals: From the company canteen to the company pension scheme, we then use the information obtained to deploy it in realistic spear phishing simulations.
Example phishing scenario based on publicly available company information
Clear and easy to understand key figures offer you live insights.
Awareness Manager
Real-time monitoring of your security level in the dashboard.
Get a live overview of the status of your awareness campaign and the current security level in the Awareness Manager at any time. The results can be viewed project-wide and on a group basis. You can also see how many links and file attachments have been opened and which ESI® results from this. The specific phishing scenarios sent, including the success rate, and the employee progress for the e-learnings sent can also be viewed.
SECURITY Hub
Micro and nano learnings for your employees centralized in one place.
The Security Hub brings together your employees' personal learning content centrally and conveniently in one place. Your employees are logged in automatically and don't have to remember any access data. They can access their assigned e-learnings and other learning content, such as short videos and employee quizzes. In addition, your employees also receive the learning units directly in their inbox. The Security Hub saves all interim training statuses and employees can also view learning content that has already been completed at any time. The FAQ section also provides your employees with information from our knowledge database.
The Security Hub helps your employees to access the training.
Determine how often your employees should receive phishing emails
DETERMINE THE INTENSITY OF PHISHING
Jederzeit volle Kontrolle besitzen und die Intensität der Phishing-Simulation regulieren können.
Bestimmte Ereignisse oder Phasen außerordentlicher Belastung können Gründe sein, die Phishing-Simulation für Ihre Mitarbeiter zu drosseln. In manchen Fällen kann auch eine dauerhaft niedrige Versandrate von simulierten Phishing-Mails sinnvoll sein. In Absprache mit Ihrem Awareness Consultant können Sie einfach und schnell die Intensität aller versendeten Phishing-E-Mails global auf die Bedürfnisse Ihrer Mitarbeiter anpassen. Behalten Sie jederzeit die Kontrolle über Ihre individuelle Awareness-Kampagne!
CUSTOMIZED TRAINING based on needs
Increasing levels of difficulty without frustration.
Our phishing simulation starts with simple scenarios and increases individually - with a successful defense of the employee up to more and more complex spear phishing mails. In this way, we avoid both demotivated employees who experience one unsuccessful frustration experience after another and security fatigue: Employees are given just the right degree of difficulty between boredom and excessive demands.
Happy employees through adapted difficulty levels
Individual explanatory page
Education obtained in the "most teachable moment".
If an employee opens a risky link or file attachment or enters login data on fake pages, he or she is redirected to the IT-Seal explanation page. The exact example of the e-mail just opened shows how the employee could have recognized the phishing attempt. In this moment of misconduct, the employee is particularly receptive to a sustained explanation: the so-called "most teachable moment" can fully develop its learning effect. Also frequently used psychological tricks (curiosity, fear, habit, ...) are pointed out.
Outlook reporter-add-in
Simplify reporting processes and give employees feedback.
Your employees can report suspicious e-mails with one click via a button in Outlook. If the e-mail is part of the IT-Seal phishing simulation, they receive positive feedback directly and the e-mail is moved to the spam folder. If it does not originate from IT-Seal, it is automatically forwarded as an attachment to the internal IT support for analysis (the target address can be defined here by the customer). The employee receives feedback that the e-mail is being examined and IT Support will contact him. This minimizes the internal effort that our simulated phishing emails cause - in line with our full-service approach. In addition, this workflow clearly defines the reporting chain for real phishing incidents and makes it employee-friendly.
The add-in is available for Outlook 2016 and Outlook 365.
Use the certificates as proof for your ISO reporting.
ISO27001-compliant reporting
Individual certificates for your employees and your company.
All participants who successfully complete their designated e-learning modules and phishing simulations will receive a personalized certificate of participation, which can be used as proof within the framework of ISO 27001. The company itself will also receive a valid certificate of the measures taken to provide a proof.
Internationally available
Train your employees worldwide.
Our awareness trainings are available in many different languages and are regularly expanded. Train not only your German-speaking employees, but also employees at worldwide locations with different languages. Security Awareness knows no borders!
Others by arrangement.