Raising Awareness and training users in cybersecurity #CyberSecMonth

October is relatively busy for Tranquil IT as it holds an event that is close to our hearts and is part of our daily commitments. Welcome to : CyberSecMonth, the European Month of Cybersecurity

CyberSecMonth seems important, but what is it?

The European Cyber Security Month (ECSM), is an awareness campaign that runs throughout the month of October and aims to raise awareness among citizens and organizations about cyber security threats. Many organizations join in by sharing their resources and other best practices to protect themselves online. Maybe that’s why you’re here!

The advantage of such an event is that it offers more than 400 activities in about 30 countries. In France, the National Cybersecurity agency of France (ANSSI) covered the event with a detailed press folder detailing all the events that will take place in France.

CyberSecMonth with Tranquil IT?

When you start the process to secure your fleet, the first thing to do is to raise awareness about cybersecurity and train your users. Cybersecurity is a subject that concerns us all. It requires you to incorporate your best practices  and to choose the right tools and trusted contacts. Without these two elements, it is difficult to implement a real cyber defence strategy:

The Kit for raising awareness

This kit will assists you in raising awareness among your users about cybersecurity and the right reflexes to adopt on a daily basis. It’s fun and accessible to all and you’ll have access to videos and summary files to share with your users. The kit is made up of four parts:

  • Mobile devices :  Mobile devices are an easy target for malicious hackers, especially thanks to public wifi ( try to avoid if possible)
  • Phishing : Teach your users to identify suspicious emails and report them to you! Even if it’s tempting to save 30 years with this miraculous cream or to close an extraordinary deal with this rich dignitary who has visited your website, the best thing to do is to go your way safely.
  • Passwords : A basic rule: vary the types of characters in your passwords! But that’s not enough! No, Password123! is not a good password. The best way to do this is to use a password manager, such as Keepass for example
  • Professional and personal : With the arrival of BYOD (Bring Your Own Device), your vigilance must be doubled. Your users are often careless with their mobile devices, either out of ignorance or overconfidence. “With my Mac, I’m sure I don’t have a virus”: which systemadmins haven’t heard this sentence? It is up to you to raise awareness among your users to erase these preconceived ideas!

Discover the awareness kit and share it with your teams!

The SecNum academy

Set up by ANSSI, this MOOC aims to transform citizens into real actors in their own security and that of their company. To obtain the certificate of success (non-certifying), it will be necessary to validate the four modules of this training to learn the basic concepts of information systems security:

  • Overview of the ISS
  • Authentication security
  • Internet security
  • Workstation security and nomadism

This MOOC goes beyond the awareness kit, and is more so a real cybersecurity training. Our advice: offer this MOOC to your notified employees only!

Go ahead and try  the ANSSI MOOC !

We are committed, internally, to training our users. A good tip to start is by giving the cybersecurity awareness kit to a new employee as soon as they arrive. We are also part of a DevSecOps approach in the development of our flagship tool WAPT.

Computer graphics: Raising awareness and training

The SecNum Academy

Established by ANSSI, this MOOC aims to empower citizens to become active participants in their own security and that of their business. To obtain the completion certificate (non-certifying), it will be necessary to validate the four modules of this training, which cover fundamental concepts in information system security:

  • Overview of Information System Security.
  • Authentication Security.
  • Internet Security.
  • Workstation Security and Mobility.

This MOOC goes beyond basic awareness kits and resembles a real cybersecurity training. Our advice: Share this MOOC with your already informed colleagues only!

Get started and take the ANSSI’s MOOC!

We also commit internally to training our users. A good starting point is to share the cybersecurity awareness kit as soon as a new collaborator joins. Additionally, we embrace a DevSecOps approach in the development of our flagship tool, WAPT.

Cybersecurity for children

This year, we contributed to the Digital Security Vacation Workbook. This project was led by ISSA France and aims to raise awareness among children about cybersecurity.

On the agenda:

  • “Little tips” to teach your child how to protect themselves from cyber threats.
  • Games to learn “digital language”.
  • Fun illustrations.
  • Thematic sheets.

The workbook even awards the “Web Ace” diploma to your child (only if they answer the questions correctly; we leave this to your discretion to monitor).
Digital security is a daily challenge, and engaging children in a playful manner is the best way to protect them.

Where to find the Vacation Workbook?

DevSecOps, a reflection of our commitment to cybersecurity

If you are using our deployment solution WAPT, you will know that we have strengthened our commitment to cybersecurity with the release of WAPT 1.5. Indeed, version 1.5 of WAPT Enterprise has obtained an ANSSI qualification, attesting to the security and robustness of our software. We have also revised our identity to reflect this commitment.

We opted for a “DevSecOps” approach. This movement represents an evolution of DevOps methods and integrates “By Design” security. WAPT is therefore developed with security in mind from the very first lines of code.

Do you need to secure your computer equipment?
Demonstration

Group demo

21/11/2024 : 10h30 - 11h30

Let's go !