Yesterday, PhishMe's CEO Rohyt Belani came out with a great new initiative. They have created a "lite" version of their platform — they call it simplified — and they are giving it away for sites with 500 employees or less.
Why do we think this such a good idea?
This is still a very young market. Traditional security awareness training which was done once a year, usually with a "death-by-powerpoint" session, simply does not work anymore, if it ever has.
New-school awareness training, or version 2.0 if you will, takes it to the next level with an initial baseline phishing test, then on-demand interactive training, and as the third step frequent social engineering tests year-round.