In an attempt to make security awareness training as engaging as possible, the industry ditched its core purpose and value. Instead of creating content proven to change digital user behaviors, companies sought to produce incredibly over-the-top shock value videos that grabbed attention.
The problem with this strategy is while end-users are more willing to participate in training, lessons learned are shockingly limited. In addition, per Ivoryware research, many users find overproduced content to be relatively demeaning because they feel talked down to, including some of our lessons.
Post research Ivoryware training strategy
To remain focused on our purpose Ivoryware has shifted our production stance to include a heavy dose of Respectful Reimagination. As one of the only vendors on the market that creates 100% of our content in-house, we are well-positioned.
For the End-User
Instead of producing content with samurais slashing phishing emails in half, loud noises with flashing lights, and complex Goosebumps style storylines, Ivoryware focuses on “to the point” short lessons paired with easy to digest animations.
For the Security Leader
Ivoryware’s R&D strategies are focused on making the security leader’s job duties associated with security awareness as automated as possible instead of adding complex bells and whistles. A mature security awareness program goes so far beyond technology.
The awareness executive should spend less time managing reports and deploying training campaigns and more time developing custom in-house initiatives to build upon a culture of security awareness.