Spots are limited! Enrollment closes November 28th, 5pm PST.
Fridays on December 2nd, 9th & 16th | 10-11 am PT | 1-2 pm ET
Enroll to become a Proofpoint Certified Phishing Specialist! Seats are limited and are on a first come first serve basis.
Phishing threats continually evolve to bypass security programs and human detection, and it only takes one person to fall for phishing to incite a severe data breach. So how do you remain aware and protected in the changing phishing landscape? How do you educate your employees to recognize the warning signs and avoid revealing sensitive information?
Proofpoint Certified Phishing Specialist program is designed to train you on the latest trends and tactics used in modern phishing attacks, provide valuable insight into phishing prevention, and demonstrate how Proofpoint’s people-centric approach can help you better protect your company.
Becoming certified is easy. Just register and attend the three 1-hour courses listed below, pass the exam at the end of each course, and earn your certification!
COURSE 1
Anatomy of the Phish – Breaking Down the Latest Phishing Attacks
The migration to working from home has forced many security teams to drastically change their defensive strategies to protect end users. In response, threat actors have become more devious, more targeted, and more highly motivated to compromise your sensitive data.
Attackers are working harder than ever, using new methods and new bait to lure and hook their victims. You’ll learn from the most recent real-world examples of phishing attacks seen by Proofpoint, which utilize Microsoft office collaboration tools and OAuth permissions, TOAD (telephone-oriented attack delivery) methods, text messages, PhaaS supply chains and others. By understanding the way phishers operate, you’ll be better prepared to recognize and combat attacks when they occur in your organization.
In the first session, we will discuss:
- How phishing has evolved in the last several years
- Modern phishing techniques including BEC/EAC, advanced social engineering, and more
- Recent examples of phishing attacks seen in the wild
- Phishing trends to watch out for in the future
COURSE 2
Built to Scale – Creating a Platform for Phishing Prevention
As you learned in our first session, phishing emails come in a variety of forms and flavors, with advanced features designed to bypass even the most cutting-edge security solutions. It’s no surprise then, that phishing attacks like business email compromise are incredibly costly, accounting for more than $2.4B in losses last year alone1.
Modern threat actors have created entire platforms in hopes of completing a single successful attack. To protect your users and secure all your organization’s potential threat vectors, you need a platform of your own.
Building a layered security approach with multiple attack stop-gaps and fail-safes is especially crucial to stopping phish. Learn how phishing attacks rely on, and take advantage of various technologies employed by your end users, and how to implement more adaptive controls to reduce your overall attack exposure.
In the second session, we will discuss:
- How a phishing attack can move through your network
- Identifying phishing vulnerabilities within your security infrastructure
- Why and how to build a layered security approach against phishing
1Federal Bureau of Investigations (FBI). “Internet Crime Report 2021.” 2021.
COURSE 3
Human Firewall— Prepping Your Users to Fight Phishing
People are the primary target of cybercriminals. And it only takes one person to fall for phishing to incite significant financial loss or a severe data breach. To fight phishing, you need to empower users with the right knowledge and tools, so they can become a strong last line of defense.
While 73% of organizations conduct formal security awareness training, only 53% of working adults know what the term “phishing” means1. Organizations struggle to improve users’ learning retention and detection efficacy with their current security awareness programs.
In the third and final session, we will discuss:
- How phishing has impacted various industries
- The challenges with security awareness training
- Best practices for educating your end users
- How to measure behavior change
1(Proofpoint, Inc.). “2022 State of the Phish.” 2022.
Speakers
Brian Reed
Senior Director of Cybersecurity Strategy
Brian Reed is the Sr. Director of Strategy at Proofpoint. He comes to Proofpoint from Gartner where he focused on a wide variety of topics – cloud security, data security, incident response, insider threats and security awareness. Since 2015, he published over 50 thought-leading research notes at Gartner. Previous to Gartner, he spent over 15 years in a variety of business development, product management, sales and system engineering roles. He is well known in the information security industry and has spoken at numerous Gartner events, as well as other industry events globally.
Mark Harris
Product Marketing
Mark Harris was a Sr Director Analyst at Gartner where he covered a number of security topics and was the lead author on the Market Guide for Email Security. He authored numerous research notes as well as vendor reports. Prior to Gartner he spent over 20 years in a variety of Software engineering roles at both McAfee and Sophos including 8 years running the threat research labs at Sophos. He has over a dozen patents around cyber security and is an experienced speaker having presented at many conferences including RSA, InfoSec, Hacker Halted as well as TV and Radio interviews.
Rob Smith
Cybersecurity Advisor
Rob Smith advises Proofpoint on the latest trends and innovations in cybersecurity to assist in keeping Proofpoint as an industry thought leader and innovator. Prior to joining Proofpoint, he was lead analyst for remote access and covered endpoint security and management for Gartner. Mr. Smith was author of numerous industry leading research documents where he defined the cybersecurity industry and its future. He also founded the world’s largest dedicated MSSP and numerous other successful cybersecurity start-ups where he authored 7 industry patents covering VPN access and endpoint security.
