After a surge of phone impersonations seeking restricted data from staff, a security manager decides to educate employees on suspicious callers. Which measure addresses these incidents most effectively?
Host recurring sessions that demonstrate examples of false callers and reporting steps
Restrict international dialing capability across all departmental lines
Deploy an inbound network scanner that flags potential social engineering attempts
Set a strict policy requiring periodic passphrase resets for external accounts
Regular workshops equip staff with the knowledge and confidence to spot unusual requests and follow escalation steps. Other approaches may offer benefits, but they do not address phone impersonation attempts directly or reinforce user preparedness in a sustained way.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is social engineering in the context of cybersecurity?
Open an interactive chat with Bash
Why are recurring education sessions more effective than deploying a technical solution like a network scanner in this scenario?
Open an interactive chat with Bash
What are the key components of an effective social engineering awareness workshop?