ChatGPT 4o mini Log in Sign up

Create a matrix table for 15 key Cyber Security Awareness topics,

definitions, examples, and related facts in an organized way. Include
columns for 'General Users,' 'System Administrators,' 'Network
Administrators,' 'Managers,' 'General Managers,' 'Non-Technical
Managers,' 'Business Leaders,' 'Leadership,' 'Senior Management,' and
'Executives' to make it easier to review and memorize.

Here’s a matrix table that covers 15 key Cyber Security Awareness topics, their definitions, examples,
and relevant facts, while mapping them to various roles within an organization. The table is
organized to help you identify which groups of people need to focus on each topic:

Non-
Cyber Security General System Network General Technical Business Senior
Topic Definition Example Fact Users Administrators Administrators Managers Managers Managers Leaders Leadership Management Executives

Phishing Fraudulent Receiving an Phishing is a ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

Attacks attempts to email from a leading cause
obtain fake bank of data
sensitive claiming breaches
information account globally.
by disguising verification
as needed.
trustworthy
entities.

Password Techniques Using a 81% of data ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

Management for creating password breaches are
and storing manager to linked to
secure store complex, weak or
passwords. unique reused
passwords. passwords.

Multi-Factor An additional Using a MFA can ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

Authentication layer of smartphone block 99.9%
(MFA) security that app (e.g., of automated
requires two Google cyber-
or more Authenticator) attacks.
verification to verify login.
methods.

Social Manipulating A scammer Social ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

Engineering people to gain posing as an engineering
unauthorized IT support tactics have
access to technician to been used in
systems or steal login 98% of
data. credentials. cyberattacks.

Ransomware Malware that Locking files Ransomware ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

encrypts files and attacks have
and demands demanding increased
payment for cryptocurrency 13% annually
decryption. for the and caused
decryption billions in
key. damages.

Data Privacy The process Complying Fines for non- ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

and of protecting with GDPR by compliance
Compliance personal and ensuring that with data
sensitive data customer data privacy laws
to adhere to is properly like GDPR
legal protected. can reach up
standards. to €20
million.

Security The process Installing 60% of data ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

Patches & of applying patches for breaches
Updates software operating involve
updates to fix systems or vulnerabilities
vulnerabilities. applications. that were
already
patched but
not applied.

Mobile Device Securing Enabling 50% of ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

Security mobile remote wipe organizations
devices to for lost or have
prevent stolen experienced
unauthorized devices. a mobile
access and security
data loss. breach in the
last year.

Insider Security risks An employee Insider ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

Threats originating accessing threats
from within an data they account for
organization, shouldn't have 34% of all
often by for personal security
employees or gain. incidents.
contractors.

Cloud Security Protecting Using 92% of ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

data and encryption and organizations
systems access control are adopting
hosted in the in cloud-based cloud
cloud from services. services, but
cyber threats. 60% report
cloud
security
concerns.

Endpoint Securing Installing Endpoint ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

Protection devices such antivirus protection
as laptops, software on all solutions
desktops, and workstations. help prevent
servers from 80% of
cyber threats. attacks
targeting
employees.

Incident The approach Reporting and Organizations ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

Response to handling a isolating a with an
security compromised incident
breach or server to response
cyber attack. prevent further plan reduce
damage. the impact of
breaches by
50%.

Network Measures to Using firewalls 95% of ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

Security protect and intrusion organizations
networks detection consider
from systems (IDS) network
unauthorized to secure a security
access or network. essential to
attacks. their overall
security
strategy.

Business Ensuring Developing 60% of ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

Continuity critical disaster organizations
business recovery plans that
functions can and backup experience a
continue systems for major
during and data. disruption go
after a cyber out of
attack. business
within 6
months.

Security Training Holding Organizations ✔ ✔ ✔ ✔ ✔ ✔ ✔ ✔

Awareness employees on regular that provide
Training recognizing phishing security
and avoiding simulation training
security tests to teach reduce
threats. employees. security
incidents by
70%.

Key Notes:

1. General Users: Focus on phishing, password management, MFA, social engineering, and data
privacy, as they are the most vulnerable to direct attacks.

2. System & Network Administrators: Should be highly knowledgeable in ransomware, security

patches, cloud security, insider threats, and incident response, as they manage and secure
systems.

3. Managers & Non-Technical Managers: Need awareness around social engineering, insider
threats, and security policies to protect their teams from human-based risks.

4. Business Leaders & Executives: Should have a strong focus on business continuity, cloud
security, data privacy compliance, and overall risk management for strategic decision-making.

This matrix helps to ensure each role is appropriately trained and focused on the most relevant
security topics.

Message ChatGPT

?
ChatGPT can make mistakes. Check important info.