First Online Security Game Launched to Help Educate and Raise Awareness

  • May 27, 2015

IT security vendor IS Decisions has launched the first online game designed specifically to educate and raise awareness of user security and insider threat. ‘The Weakest Link: A user security game’ has been developed in response to IS Decisions’ research that found 48% of IT professionals believe training is key to raising awareness of user security, whilst 38% wanted to see more innovative training content and materials.

The game is now public, following an initial private beta period, during which time the contents have been developed with input from security experts and analysts including Bob Tarzey at Quocirca, Independent Advisor Neira Jones, Christophe Veltsos of DrInfoSec.com and Lead Assessor in Information Security at Metropolitan State University, and Paul Drury of Chatback Security. Input has also been sourced via the community on IT social network Spiceworks.

Taking a question and answer format similar to a ‘choose your own adventure’ style, the game tasks its players to make it through their first month at a new imaginary employer without too many security ‘slip ups.’ A different scenario is posed for each working day, with options for responses. The player then loses points for the choosing a non-secure option, or gains for making a secure choice. The aim is to survive the month without losing too many points.

François Amigorena, CEO of IS Decisions, said, “User security is obviously a serious issue, but we know that it’s often a struggle to educate users on the issue through a dry security policy document or even a presentation. You have to hold their attention, so we came up with a way to try and do that. The idea is to bring a fun element to user security, sneaking some education into a game you can play in 20 minutes.

“That said, we didn’t want to develop ‘The Weakest Link’ (a play on the fact your users are your weakest link) in isolation. We want it to be a credible independent resource for IT people to use, which is why we’ve developed it with the input of analysts, experts and IT people themselves. It’s completely free to use, and we hope that IT people will share it with their users to play to try and drive awareness of the issues of user security and insider threat.”

The Weakest Link: A user security game’ is free to play on ISDecisions.com, where IS Decisions is still gathering feedback for the continued development of the game.

Featured

  • Paving the Way to Smart Buildings

    In today's rapidly evolving security landscape, the convergence of on-prem, edge and cloud technologies are critical. The physical security landscape is undergoing a profound transformation, driven by the rapid digitalization of buildings and the evolving needs of modern organizations. As the buildings sector pivots towards smart, AI and data-driven operations, the integration of both edge and cloud technology has become crucial. Read Now

  • The Cybersecurity Time Bomb

    If you work in physical security, you have probably seen it: a camera, access control system, or intrusion detection device installed years ago, humming along without a single update. It is a common scenario that security professionals have come to accept as "normal." But here is the reality: this mindset is actively putting organizations at risk. Read Now

  • Deploying in a Hybrid, Cloud Environment

    The way organizations manage access control is evolving. Traditional on-premises systems come with high IT and server requirements. At the same time, fully cloud-based solutions may not meet the needs of every facility. Read Now

  • Facing Facts for Facilities

    Despite the proliferation of constantly evolving security solutions, there remains a troubling trend among many facility operators who often neglect the most important security assets within their organization. Keys and shared devices like radios, laptops and tablets are crucial to successful operations, yet many operators are managing them haphazardly through outdated storage systems like pegboards and notebooks. Read Now

  • Report Reveals Security Training Reduces Global Phishing Click Rates by 86%

    KnowBe4, the cybersecurity platform that comprehensively addresses human risk management, today launched its “Phishing by Industry Benchmarking Report 2025” which measures an organization’s Phish-prone Percentage (PPP) — the percentage of employees likely to fall for social engineering or phishing attacks, indicating the organization’s overall susceptibility to phishing threats. This year’s report found a global average baseline PPP of 33.1%, meaning a third of employees interact with phishing simulations before taking part in best-practice security awareness training (SAT).COVER 2025-PIB-NA-Report_EN-US Read Now

Most   Popular

New Products

  • Camden CM-221 Series Switches

    Camden CM-221 Series Switches

    Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings.

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions.

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities