Knowledge base for security awareness, phishing and NIS2
The 2LRN4 knowledge base is built for topical authority. It includes 154 in-depth articles on phishing, employee behavior, NIS2, security awareness strategy and incidents or data breaches.
Research
The Attention Problem
Why phishing simulations alone do not make employees better at recognizing phishing, and which approach is actually supported by research.
The Buy-in Problem
Why privacy and security awareness programmes rarely fail because of the e-learning, but because of a lack of management involvement, and how to get management on board after all.
The difference between security awareness and privacy awareness
Science breaks security awareness down into knowledge, attitude and behaviour, and privacy awareness into perceiving, understanding and applying. That very difference explains why security calls for behaviour change and privacy for the application of knowledge, and why a single training format falls short for both subjects.
The participation paradox
Why mandatory security and privacy training raises participation but does not change behaviour on its own, and what approach the science shows actually works.
The Vulnerable First Months
Why the first months of employment are a vulnerable period, across the full breadth of security awareness, and what science says about the timing and form of the first training.