Vanson Bourne survey: IT employees more likely than average to open attachments from unknown senders, download apps from outside app stores, click on links in social media sites. The average 10,000-employee employee spends $3.7 million a year on anti-phishing training. In a regulated field like healthcare, security training is a necessity, even if it’d rather spend their time saving lives. The Green Clinic sends out short monthly notes about some aspect of HIPAA compliance.”]
Source: https://www.csoonline.com/article/2987822/does-security-awareness-training-even-work.html