Webroot Enhances Security Training With MSPs, MSSPs in Mind
The service also will be enhanced with client breach reports, updated course content to reflect new attack techniques, a new phishing lure-page framework to mimic real phishing attempts, and a unified console to simplify security awareness training.
Chad Bacher, Webroot’s senior vice president of product strategy and technology alliances, tells us for security awareness training courses to be used to their full potential, MSPs needed an easier way to manage multiple campaigns for their multiple clients.
“The updated solution uniquely allows MSPs to manage all their security-awareness training campaigns from a single dashboard with a single click, streamlining the process from start to finish,” he said. “Additionally, the new course content incorporates real-world breach scenarios in a micro-learning format to ensure employees are familiar with the latest attack techniques and are more likely to retain the new information.”
The updates are designed to address SMBs’ challenges with security awareness training. According to a recent 451 Research report, 62 percent of SMBs said they have security awareness training programs in place, but they also reported their programs are ineffective and difficult to manage.
“This update not only enables MSPs to more easily manage security awareness training campaigns for their clients, but it also makes the content they receive more engaging and effective,” Bacher said. “We know SMBs struggle to implement effective security awareness training and the increased risk exposure that comes as a result, so we wanted to deliver a solution that streamlines the management process and prioritizes content quality over quantity to ensure MSPs, and the businesses they serve, can succeed.”
Direct feedback from MSPs emphasized the need to simplify the campaign management and deployment process, he said. It was too time intense and becoming a headache to the point where it would go underutilized or be forgotten, he said.
“MSPs should consider security awareness training from vendors with cybersecurity focus and expertise, and who have deep visibility and insights into the changing threat landscape,” said Aaron Sherrill, 451 Research senior analyst. “Ideally, training should be integrated into the overall security-services delivery platform to provide a unified and cohesive approach for greater efficacy. Additionally, MSPs should strongly consider the value of time-of-need training; [for example], when training can be delivered in direct response to a user’s actions, since that is a proven tactic for ensuring users internalize the lessons they receive.”