I work for a large IT company so we’ve had numerous such training courses, but then they use third party services for time reporting, manager evaluation, cloud services, personal finance advice, etc. so I regularly get emails with links to domains that I’ve never heard about that I’m supposed to trust…
I work in a big international company. We regularly have phishing (email) awareness training. But they outsource about everything and regularly change the providers. So we often get totally legit emails from just some random companies and are supposed to visit/ login to some previously unknown domains.
That’s what happens when executives don’t listen to IT…
The company I currently work for host everything at the building they own. The CEO doesn’t understand much about IT, but his attitude is “I trust your integrity and your expertise, so I’ll approve anything you ask me within reason if it will improve security and reliability.”
