top of page

Strategic awareness yes

Luxury no

placeholder

01

Evaluate previous activities

Falls Sie bisher Awarenessmaßnahmen nur einmal pro Jahr angeboten haben, ist es fraglich, ob die Mitarbeiter genug Wissen und Handlungssicherheit aufgebaut haben. Oft sinkt der Wissensstand schnell wieder ab oder wird im Tagesgeschäft von anderen Themen verdrängt. Mit einem von uns für Ihr Team erstellten kurzen Online-Quiz können Sie den Wissensstand ermitteln.

02

Define the desirable measures

Together we discuss the results, the gaps and the possible solutions. As part of a conceptual definition, we define target groups and fields of action as well as concrete and efficient measures that suit your size, cost structure and needs. The IT, HR department, the works council and the CISO pull together here and these activities support the company enormously in promoting information security.

03

implementation of the measures

A combination of initial knowledge building, repeated "microlearning" and simple measures for employees in the office and in production leads to a gradual increase in skills. All available platforms are used, from posters on the wall to online webinars, e-learning and learning units on the smartphone. No one is left behind and the whole team is raised to a higher level within a reasonable time frame.

04

Continuous improvement of information security

The ongoing review of knowledge and repeated, targeted refresher training create a higher level of knowledge and confidence in action in the control loop.

This is how we support your employees

Our process at a glance.

I had the pleasure of working with Opexa Advisory; Thomas Salvador is a very astute and pleasant colleague/advisor. He knows how to break down complex problems in a structured and understandable way. He was also a great help on political and personal issues. 5 stars for outstanding professionalism and integrity.

Roman Dietrich, Bayerische Motoren Werke AG

Very committed, highly professional, always team-oriented, above-average successful and extremely fast!

Josef Schriek, Wonder Automotive Europe

With the support of Opexa and thanks to the ISMS SmartKit, we have successfully taken the step towards TISAX® certification.

In an acceptable period of time, we were able to develop an ISMS that not only meets the standard requirements but also takes into account our working methods as a UX agency.

Our team always perceived the collaboration with Mr Kilvinger as proactive, friendly and customer-oriented. Furthermore, his support during the process and the audit was a great help to us.

Tabea Daunus, uintent GmbH

What our customers say

Frequently asked questions about Awareness

How often should employees be trained?

A single training session on one day - which is very common - is offset by ongoing changes, because the situation is constantly changing due to updates, patches, new hardware, new machines, new software and configuration changes, internal conversions and relocations. So a training session on one day is offset by many changes on 364 days! This disproportion is obvious.

In addition, one training session per year can only be a first step; major behavioral changes are unlikely to be expected with this one "nudge" per year, because it is not just about building up knowledge but also about maintaining it and continually adapting it as needed.

We recommend a combination of comprehensive basic training and short monthly microlearning sessions. The frequency and scope of the measures can vary.

How are colleagues in production who do not have an IT workplace trained?

The variety of requirements can be met using different methods, be it seminars in training rooms, e-learning on tablets, special terminals in the social rooms or on your own smartphone at flexible times. The aim is to achieve good learning results and to respond flexibly to the wishes of the workforce in order to impart the minimum knowledge of information security.

Why "microlearning"?

Microlearning is an effective approach based on principles of cognitive psychology. It fits well with the way the human brain works by targeting the brain's capacity to process information and create long-term memories. Combining basic training with ongoing small repetitions keeps the overall level of knowledge high. By taking these cognitive aspects into account, microlearning offers an efficient and effective method of imparting knowledge and supporting learning. Microlearning allows companies to save time and money on training by improving the efficiency of learning processes and increasing employee performance in the field of information security.

Welche Rolle spielt der CISO hierbei?

Through his role, he is the driving force behind the development, implementation and monitoring of training measures, so he plays a crucial role in creating a security culture in the company. He has both an operational and a strategic role! Due to the importance of the topic, the wide range of aspects and the impact on the organization, awareness is not only operationally important but must also be implemented strategically by the CISO.

Unsere Partner

bottom of page