SayPro Host at Least One Internal Cybersecurity Awareness Session Per Quarter.

SayPro Quarterly Cybersecurity Awareness Initiative
Detailed Document: Host at Least One Internal Cybersecurity Awareness Session Per Quarter

Objective

SayPro is committed to fostering a proactive cybersecurity culture across all departments. As part of its quarterly compliance and capacity-building strategy, SayPro hosts at least one internal cybersecurity awareness session per quarter to educate staff, reinforce secure digital practices, and reduce risks associated with human error.

Purpose of the Awareness Session

The cybersecurity awareness session is designed to:

• Educate SayPro staff on the latest cyber threats, including phishing, ransomware, spyware, and social engineering.
• Promote safe online behavior and digital hygiene.
• Increase awareness of SayPro’s internal cybersecurity policies and acceptable use protocols.
• Train employees on how to identify, report, and respond to potential cyber incidents.
• Support compliance with SayPro’s digital security strategy and external regulatory standards (POPIA, GDPR, ISO/IEC 27001).

Frequency and Format

• Frequency: One session per quarter (minimum).
• Timing: Scheduled during the final month of each quarter (e.g., June, September, December, March).
• Duration: 60 to 90 minutes.
• Format: Hybrid model – virtual via SayPro Video Conferencing Platform and in-person where applicable.

Session Planning and Execution

Topics Commonly Covered

Below are core topics SayPro includes in each quarterly awareness session:

1. Overview of Current Cyber Threat Landscape
2. How to Spot and Report Phishing Emails
3. Safe Password Practices and Multi-Factor Authentication (MFA)
4. Data Privacy and Device Security
5. SayPro’s Acceptable Use and Cybersecurity Policies
6. Secure Use of Cloud and Collaboration Tools
7. Mobile App and Remote Work Security
8. Incident Reporting Procedures within SayPro
9. Recent Case Studies and Lessons Learned
10. Live Q&A with SayPro’s IT Team

Optional: Live simulations of phishing or fake malware warnings to assess alertness.

Session Outputs

Following each session, the following items are completed:

• ✅ Attendance Register – Documented and submitted to Compliance Department.
• ✅ Training Feedback Survey – Used to improve future sessions.
• ✅ Training Completion Acknowledgements – Staff confirm participation and understanding.
• ✅ Session Recording & Materials – Archived on SayPro intranet for future reference.
• ✅ Internal Report – Submitted summarizing key topics, attendance stats, and takeaways.

Tools and Resources

• Learning Management System (LMS) – To track and store participation records.
• SayPro Intranet Portal – For sharing resources, registration, and training materials.
• Interactive Tools – Live polling (Mentimeter), quizzes (Kahoot), and simulations (KnowBe4 or internal tools).

Compliance and Policy Link

Hosting quarterly awareness sessions aligns with:

• SayPro’s Cybersecurity Policy Framework
• Quarterly compliance deliverables for SCMR-6
• SayPro’s internal objective to maintain zero tolerance for cyber negligence
• Requirements under data protection laws and ISO standards

Evaluation Metrics

Conclusion

Quarterly cybersecurity awareness sessions are a vital part of SayPro’s overall defense strategy. By empowering employees to become the first line of defense, SayPro significantly reduces the risk of internal vulnerabilities and ensures continuous alignment with its mission to maintain a safe, secure digital environment.