I don’t normally choose Phishing as a research topic because I think the literature is saturated with insights. However, I see that many companies struggle with a few important details when it comes to Phishing simulations:
What is the optimal Phishing simulation click rate and what it entails
How to achieve the optimal Phishing simulation click rate
company culture impacts learning from Phishing simulations
Running phishing simulations is essential for educating employees and refining their ability to recognise and avoid phishing attempts. However, finding the sweet spot between challenge and achievability is crucial for ensuring effective learning and behaviour change. Here are a few key considerations based on research.