What It Does
The Feedback Module handles communication to individual employees based on data received from the Policy Orchestration & Automation Engine. It explains to employees why certain controls and access levels have changed, and how their actions impact their security experience, good or bad.
How It's Different
Communications sent by the Feedback Module are proactive and personalized to the individual, according to their appropriate level (such as staff, managers or executives) and specific to the risk (for example: phishing, malware, data handling, password security, etc.)
What to Communicate
A necessary step to reduce the Human Attack Surface is proactive communication to risky employees on their security performance. This simple action can reduce work-arounds and organizational friction often caused by security restrictions. It can also reduce an over-reliance on training to solve the problem.
- Frequently targeted individuals can be told to stay vigilant, with tips on how to keep the organization secure
- Those making poor decisions can receive direct feedback in real-time to course correct
- Managers and department heads can receive scorecards around known risks and what they can do to help their teams
- Executives can receive reports on security efficacy and how human risk is being mitigated over time
"Elevate Security platform is a critical part of how we gain visibility into and report on the trends around employee risk. We share these metrics that show effectiveness of our activities and improvement to our security posture over time with the board on a regular basis"
CISO, Large Healthcare Insurance Provider
"Elevate Security provides a level of actionable insight that is extremely valuable in assessing security risk and defining corporate awareness strategy."
Yinka Badmus, VP, Global Security Risk Operations, Equifax
"Availability of Security Reputation Score from Elevate Security has been a game changer for us. It allows us to exempt employees who exceed a certain threshold from taking Security Awareness Training and still remain compliant with the regulators. In our business that contributes to both the bottom line savings and top line growth."
CISO, Large Professional Services Company