Code42 launches microlearning solution for insider risk reduction

Code42, an insider risk management specialist, has launched its Code42 Instructor microlearning solution, a new insider risk education offering that improves insider risk awareness by focusing on the creation of holistic, security-oriented cultures.

The solution is designed to deliver actionable, hyper-targeted and bite-sized lessons to end-users when they are needed most, helping to change security behaviour for the long term.

Instructor can be used directly with the Code42 Incydr product to decrease accidental risk with right-sized, right-timed situational guidance that’s relevant for specific end-users at the moment of impact.

According to a 2021 survey by Code42 and CyberSecurity Insiders, 71 percent of security leaders reported that they are most concerned about an inadvertent (negligent or accidental) data leak. According to a recent study conducted by Aberdeen and commissioned by Code42, risk from insiders is pervasive and can account for the loss of up to 20 percent of annual revenue. It also found that employees average 13 data exposure events per user per day.

“Collaboration tools are essential to how the hybrid workforce operates,” said Joe Payne (pictured), Code42 president and CEO. “Is it any surprise then that source code and customer pricing plans end up in personal email and cloud storage accounts without employees giving it a second thought? Insider risk is pervasive, and to address it requires transparency, training and technology. Instructor delivers on all three of these fronts. It provides role and topic-specific lessons in the moment to help employees learn how to make smart security choices.”

The Code42 Instructor solution helps organisations rapidly mature their insider risk management programs by incorporating data-driven insider risk behavioural guidance for end users. Instructor was built with a presumption of positive intent and will offer lessons to be shared as needed, in a hyper-targeted way. This also allows end-users to self-correct so security teams can focus their efforts on risk incidents that require in-depth investigation.

To keep the lessons highly relevant and contextual for end-users, lessons are also designed to specifically address risks that are role specific. For example, lessons for software engineers will address how to keep source code safe, while the lessons for marketing will focus on keeping marketing data safe. Similarly, the instructor offering will have lessons that target specific technologies used in an organisation, such as lessons that are specific to proper use of Microsoft OneDrive, Slack and so on.

Did you get value from this story?  Sign up to our free daily newsletters and get stories like this sent straight to your inbox.