Security Awareness Training

Diese Seite ist auch auf Deutsch verfügbar.
Security Awareness Training teaches your staff to recognize and resist the attacks that cause most breaches: phishing, social engineering, and weak passwords, delivered by a pentester who actually runs these attacks.
Most cyber attacks begin with a human error. Someone has set a weak password or opened the wrong email attachment. Therefore, it is essential that all employees are trained on how to behave correctly.
The exact scope and duration of this training can be individually determined. Typical training contents include:
- Introduction to the threat situation
- Phishing and Social Engineering
- Internet fraud
- Password security
- Outdated recommendations
- Social Media Security
The training can be conducted remotely or on-site.
Why VidraSec 🦦
Most security awareness training is delivered by someone who read about the attacks, not someone who has actually run them. I’ve conducted phishing campaigns against companies, bypassed MFA, stolen credentials, and moved through internal networks undetected. That direct attack experience shapes how the training is delivered: the examples are real, the techniques are current, and the explanations land differently when they come from someone who has actually done this.
For non-technical audiences, a live cyber attack demonstration is available as part of or alongside the training. Watching a real attack unfold is more persuasive than any slide deck: seeing how a phishing email bypasses filters, how credentials are stolen, how one compromised account escalates to full network access. I’ve presented at international security conferences including Troopers, IT-SECX, and Hacktivity, and that speaking experience translates directly into engaging sessions for your team or event.
See Trainings & Presentations for details on the live demo format.
Format
Sessions should not exceed 1 hour per session, shorter, focused blocks work better than long lectures. For groups larger than 15-20 people, splitting into smaller sessions is recommended to keep engagement high.
Typical Price
200 € per hour of training
The final price depends on the desired content, as the training may have to be adapted to your specific environment and industry.
Deliverables
Every engagement includes a tailored training session and post-training Q&A. No written pentest report, the deliverable is knowledge transferred to your team.
Compliance
Directly relevant for NIS2 (Article 21, organizations must ensure staff receive regular security training) and ISO 27001 (Annex A control A.6.3, information security awareness, education and training).
Frequently asked questions
What topics does the training cover?
Typical content includes the current threat landscape, phishing and social engineering, internet fraud, password security, outdated recommendations to unlearn, and social media security. The exact scope is tailored to your industry and audience.Can the training be delivered remotely?
Yes. The training can be conducted remotely or on-site. For non-technical audiences a live cyber attack demonstration is also available, where a real attack is shown unfolding step by step.How much does Security Awareness Training cost?
200 euros per hour of training. The final price depends on the desired content, since the material may need to be adapted to your specific environment and industry.Related Services
martin@vidrasec.com | +43 670 3081275 | +43 670 3081275 | Book appointment |