Review phishing and malware training and provide refreshers
Per https://gitlab.com/gitlab-com/infrastructure/issues/2826
-
Provide training on phishing attacks as part of onboarding, and organize refreshers. -
Provide training on common ways in which malware enters and works, and organize refreshers.
We do already provide optional training through the phishing platform - link is sent as part of onboarding.
But we do not enforce (and for now, that seems OK as long as we test), we do not ping to refresh, and we do not provide training on how malware enters a machine and works in the first place.
@briann, is there some readily available material that is a good enough intro that we can ask people to read and create a Grovo course for or something similar?
\cc @gl-peopleops