This Week in the Channel Welcome Solutions & Services Catalogue
Vendor & Industry Hub
ANZ Forum Microsoft AWS CrowdStrike Hewlett-Packard Enterprise (HPE) VMware Cisco Dell Technologies Salesforce AvePoint
Tech Partner Operating System
1. Business Strategy & Planning 2. Organisational Design, People & HR 3. Finance, Commercials & Administration 4. Solution Productisation 5. Go-To-Market and Demand Generation 6. Client Experience & Success 7. Advisory, Governance, Risk & Compliance 8. Project and Change Services 9. Scalable Centralised Services 10. End User Enablement & Support
Business Performance Hub
Assessments Success Profiles
User Avatar
Settings Logout

Internal Security Awareness Training

Cybersecurity isn’t just an IT problem, it’s everyone’s responsibility. Our Internal Security Awareness Training Program ensures every employee understands the risks, knows how to spot threats, and develops habits that protect both our business and our clients.

By embedding training into our daily rhythm, we build resilience, meet compliance standards (SMB1001, ISO27001, CIS), and lead by example in the market.

Explainer: Building a Cyber-First Culture Across Our Organisation

Program Foundations

What it is and why it matters

Cybersecurity awareness training helps reduce human-caused incidents, one of the biggest risks to any tech partner.

The program gives us practical skills, helps us meet compliance standards, and sets the example we want to show our clients.

Key responsibilities:

  • HR drives implementation and culture.
  • IT administers the training platform.
  • Leaders & Managers set expectations and hold teams accountable.
  • Employees complete training, participate in simulations, and apply safe practices

Explainer: Reduce human-caused incidents

HR to complete: Training Program Implementation Project Plan Training Program Flow Awareness Training Program Guidelines

How the Program Works

From rollout to ongoing rhythm

Training Platform: Configured with EntraID integration, ongoing micro-learning modules, and phishing simulations every 2–4 weeks

Communication Plan: Clear updates for SLT, managers, and staff so everyone knows what’s expected

Flow of Activities:

  1. Establish project plan & select platform.
  2. Train leaders & managers.
  3. Launch CEO announcement.
  4. Employees complete initial assessment.
  5. Ongoing training & phishing tests.
  6. Weekly/quarterly reporting and recognition

Explainer: Clear updates for all

Internal Security Awareness Training Program Communication Deck

Rewards & Measurement

Driving engagement through visibility and recognition

Leaderboard highlights high performers across the company.

The program gives us practical skills, helps us meet compliance standards, and sets the example we want to show our clients.

Rewards:

  • All employees above the minimum score receive merch.
  • Top 1–3 individuals get high-value rewards (gift cards, time off).
  • Teams with strong results celebrate with lunches or shout-outs.
  • Internal champions are recognised for driving culture

Measurement:

  • Minimum expected score for all staff.
  • Overall company target tracked in dashboards.
  • Reported weekly in team meetings and monthly all-hands

Explainer: Driving engagement

Internal Security Awareness Training Program Communication Deck

Embedding Cyber Culture

Making security a lasting habit, not a one-off project

  • Training and reporting continue after launch—this is business-as-usual.
  • Success is reinforced in all-company updates, team meetings, and performance reviews
  • New employees complete the assessment during onboarding; offboarded staff are removed to keep reporting clean
  • Quarterly recognition of top performers keeps cybersecurity visible and celebrated.
  • Senior leaders and managers model the behaviour, supporting a positive, non-punitive approach to mistakes

Explainer: Making security a lasting habit

Internal Security Awareness Training Program Communication Deck