Training and Awareness Policy

At Lane Four, we are committed to fostering a culture of cybersecurity awareness and proactive risk mitigation among our employees. Our Training and Awareness Policy is designed to provide comprehensive guidance and training programs to help employees understand and mitigate cyber threats. Key components of our policy include:  

  1. Phishing Awareness: Phishing attacks are a prevalent threat. We provide training on how to recognize and respond to phishing attempts. This includes practical examples of fake emails and tips on verifying email authenticity.

  2. Onboarding Training: New employees receive a 1password training during their onboarding process. This training introduces them to essential cybersecurity concepts, our company’s security policies, and guidelines for responsible digital behaviour.

  3. Continuous Training: We understand the importance of ongoing learning. To ensure that our employees stay informed about evolving cybersecurity threats, we offer continuous training throughout the year. This includes regular updates on the latest security practices and emerging threats.

  4. Phishing Simulation: As phishing remains a significant threat, we regularly conduct phishing simulation exercises to test employees’ ability to recognize and respond to phishing emails. These simulations help employees develop real-world skills in identifying malicious emails.

  5. Two-Factor Authentication (2FA): Two-factor authentication is a critical security measure. We offer training to help employees understand how 2FA works and encourage, and in most cases mandate, its use to enhance account security.

  6. Access to External Resources: In addition to our in-house training programs, Lane Four recommends and provides access to free cybersecurity resources available on reputable platforms like Microsoft and Google. These external resources empower employees to expand their knowledge independently and stay well-informed about the latest cybersecurity practices and threats.
 
At Lane Four, we view cybersecurity training and awareness as integral components of our defence against cyber threats. We encourage all employees to actively participate in these initiatives to protect both themselves and our organisation from potential risks. Together, we can create a secure and vigilant workplace environment.