Phishing Simulation Exercises

Phishing is one of the most common social engineering methods and attack vectors hackers utilize to deliver malware, compromise credentials, steal sensitive data and carry out a variety of other threats. Through phishing, attackers send email messages that appear to be legitimate, but will play on human emotions in order to force a user error. Phishing victims often get fooled into opening malicious attachments in messages, clicking on links to malicious websites, or providing sensitive data or account credentials directly to criminals.

Schneider Downs offers phishing simulation assessments that will help your organization build resilience against these types of attacks. Our customized assessments simulate real-world attacks and are conducted by our team of skilled cybersecurity professionals in a controlled and secure environment. Phishing simulations have proven to double employee awareness retention rates - and yield a near 40% ROI - versus more traditional cybersecurity training tactics, according to a study conducted by the Ponemon Institute.

We will work closely with your team to understand your needs, culture and perceived current state of cybersecurity awareness. With your unique needs in mind, we will craft a customized phishing simulation plan. Our phishing simulation services are offered on a subscription (monthly, quarterly or yearly) or one-time basis.

Using our proven methodology, we will execute the custom phishing simulation plan and capture results about employee actions, including whether emails were ignored, reported, opened, links accessed, attachment downloaded, etc. Users who perform risky actions will be presented with educational materials at these “teachable moments” so they’re learning directly on the fly.

At the end of the engagement, our security professionals will provide you with detailed analysis and feedback documenting the results of the simulated phishing campaigns. For subscription service customers, employee behavior baselines will be captured and data analytics will be available for customers to view.

Benefits of Working with Schneider Downs

  • Baseline user behaviors and track trend data
  • Effective results with ”teachable moment” training
  • Customized templates and plan to fit your needs
  • Simulate various types of phishes (malicious attachments, harmful links, etc.)
  • Detailed reporting and easy to understand metrics
  • Support from our seasoned cybersecurity analysts on a regular basis

case studies

 
big problem:
A not-for-profit client out of 401(k) compliance.
big thinking:
Allowing more contributions by highly paid employees.
 
big problem:
Hackers attempting a six-figure wire transfer.
big thinking:
Rapid action spearheaded active containment and response.

our thoughts on

The Dichotomy of Cybersecurity in Higher Education

Cybersecurity in the higher education (Higher Ed) realm faces many challenges. Unlike corporate entities, there may be many groups outside of central IT

read more >

New features for enhanced password protection in Azure Active Directory

In a previous Our Thoughts on Article, we described a threat to organizations known as password spraying, in which an attacker attempts to login to all

read more >

Using Your Mail Server Against You

Occasionally on penetration testing/ethical hacking engagements we encounter misconfigured mail servers which creates an opportunity to either gather information

read more >

California First to Require IoT Security

The majority of cyber-attacks are not targeted, rather they are opportunistic, using automated phishing and vulnerability scans. Attackers usually identify

read more >

Better Understanding PCI Penetration Testing Requirements

If your company takes credit cards, you may be wondering if you are required to have a penetration test. In the past, it had been voluntary, but with PCI

read more >

Have a question? Ask us!

We’d love to hear from you. Drop us a note, and we’ll respond to you as quickly as possible.

Ask us

contact us

Map of Pittsburgh Office
Pittsburgh

One PPG Place, Suite 1700
Pittsburgh, PA 15222

contactsd@schneiderdowns.com
p:412.261.3644     f:412.261.4876

Map of Columbus Office
Columbus

65 East State Street, Suite 2000
Columbus, OH 43215

contactsd@schneiderdowns.com
p:614.621.4060     f:614.621.4062