Core concepts
User Risk Credit Score
What is a User Risk Credit Score?
The User Risk Credit Score measures each individuals cyber risk akin to a financial credit score. It evaluates employees' cyber readiness based on completed training courses and resilience to phishing attacks.
The score provides a measure of employees' susceptibility to cyber threats and helps organizations identify their highest risk employees for encouragement in Training participation.
Risk Scoring Categories
How is the score calculated?
User risk scoring is calculated by evaluating various factors that reflect an individual's susceptibility to cyber threats, such as phishing and social engineering. Here’s how the process typically works:
- Training Completion: The system tracks the number and frequency of security awareness training modules the user has completed. Higher completion rates mean a higher score.
- Phishing Simulations: The user’s responses to simulated phishing attacks are monitored. If a user frequently falls for these simulated attacks, their risk score decreases. Conversely, successfully identifying and reporting these attempts increases their score.
- Continuous Monitoring: Regular assessments and updates to the user’s activity and performance in training and real-world scenarios ensure the score reflects the most current risk level.
The combined data from these factors are processed through an algorithm that assigns a numerical score or categorizes the user into risk levels such as Exceptional, Very good, Good, Needs work, and Poor. This score helps organizations identify individuals who may need additional training or intervention to improve their cybersecurity practices.