FAQ

Awareness Next is a comprehensive IT security training.
This IT security training is offered to you by your employer and provided by Securepoint GmbH.

The aim of this simulation is to learn from concrete examples how phishing mails work and how they can be recognized.

Your employer has the option to conduct personalized or anonymized phishing simulations and e-learning courses, including corresponding evaluations. The following personal data will be collected from you: gender, last name, first name, email address, click behavior, and, if applicable, input data entries. Participation in the e-learning, including quiz completions, will also be recorded, but the error rate will not be tracked.

The IT security training includes

• an extensive awareness platform for learning the most important rules and tips for the safe handling of computers, smartphones, data, etc.
  For example, topics such as password use, malware or data misuse are covered.
• Simulated phishing emails sent at irregular intervals.

• interactive learning modules
• short videos and examples from everyday working life
• quizzes

Phishing emails are messages that look deceptively real and attempt to trick the user into revealing credentials, passwords, or other confidential information.
The phishing emails in the awareness training are 100% harmless.
No content or login data is ever transmitted.

In coordination with your employer and your company's data protection officer(s), we will receive from your company:

• email address
• correct title (Mr./Mrs.)
• first name and last name
• the language used

In the phishing simulation, emails are sent inviting users to respond to the email. Thereby different goals are pursued:

• A seemingly innocuous reply signals to the sender that this address exists and that the recipient may be an easy target
• It is requested to transmit confidential information
• It is requested to click on a link that leads to a fake website, on which again e.g. access data are tapped

The employer receives an aggregated evaluation of the handling of the emails.
Both personalized and anonymous evaluation of the learning modules is possible.
This depends on how the phishing campaign is configured.

No. Our systems do not track or evaluate whether you reply to an email.

Nothing.
This data is of course not stored by us.
It is only registered by our server that data was entered.
In the context of the evaluation of the phishing simulation, your employer receives information from us on how many such input masks something was entered. Depending on the settings, it is possible to track which employees have entered data.

In general, it is recommended to change your password immediately if you suspect that an input mask might have been manipulated. However, you are completely safe on our simulated phishing websites with input masks. Saving and forewarding of passwords is technically impossible. So you don't need to worry about your password falling into the wrong hands through our phishing simulation.

Using interactive learning modules, short videos, examples from everyday work and short quizzes, you will learn the most important rules and tips for the safe use of computers, smartphones and data. Topics such as

• password use
• malware
• data misuse
• Artificial Intelligence (AI)
• Compliance and
• Attacks outside the workplace

are covered.
At the end of each learning module, you will complete a short quiz, each consisting of several questions.
As a registered user on our e-learning platform, you can have your personal certificates issued. This allows you to record that you have completed the learning modules and passed the knowledge quizzes.

You will receive an invitation email with the subject "Invitation to Cybersecurity Training". The sender is no-reply@awareness.securepoint.de

Please first check if the email ended up in your spam folder.

If not, you can visit the Awareness-Next portal homepage https://awareness.securepoint.de/index.php/login under Training to:

• Reset your password, or
• Generate a login link (without a password)

In both cases, you will need to provide your email address. We will send a message to this address, allowing you to gain immediate access to Awareness Next.

If you cannot find your invitation to the cybersecurity training, please first check if the email ended up in your spam folder.

If it is not there, you can visit the Awareness-Next portal homepage https://awareness.securepoint.de/index.php/login under Training to either:

• Reset your password or
• Generate a login link (without a password).

In both cases, you will need to provide your email address.

You can download a certificate for each mandatory module. To do so, you need to watch the training video and successfully complete the quiz(zes).

If an error occurs during the download, please follow these steps:

1. Please log out of the Securepoint learning platform. To do this, click the menu button in the top right corner and then select Logout.
2. Please empty the cache of your browser
3. Please log in again to the Securepoint learning platform in the Training section: https://awareness.securepoint.de/index.php/login

If you still receive an error message after this, contact your IT department or IT service provider. They can contact us if necessary.

• Please empty the cache of your browser
• Please log in again to the Securepoint learning platform in the Training section: https://awareness.securepoint.de/index.php/login