Resellers and MSPs can use behavioural monitoring to boost recurring revenues and shift from a tactical to a strategic role within their customers.
That’s the message of Ruth Schofiled, Managing Director – UK & Ireland at PhishRod, who spoke exclusively to IT Channel Oxygen about the rising channel opportunity around human risk management (see video, above).
When it comes to cyberattacks, ‘people’ remain the most critical and vulnerable element of the ‘people-process-technology’ triangle, Schofield said.
“People are both the first and the last line of defence, but they also represent the biggest attack surface – and cybercriminals know that,” she explained.
“We are the biggest risk.”
Despite “having a place” in tackling this threat, traditional security awareness training “has limitations” because employees “tend to fall back on risky behaviours”, Schofield said.
PhishRod instead focuses on human risk management, including behavioural monitoring.
Human risk management and behavioural monitoring can help organisations start tracking how employees respond in real situations, Schofield explained.
“It gives organisations the chance to intervene and provide more targeted support, whether that’s training, reviewing policies, or looking at tech controls. It’s a much more proactive way, rather than just issuing blanket training,” she said.
US-based PhishRod recently launched its cybersecurity behavioural maturity model (CBMM), which enables it to measure behavioural change over time. It appointed formerKnowBe4, Proofpoint, and Heimdal Security exec Schofield as its UK MD earlier this year as part of plans to expand in the region.
PhishRod’s solutions offer partners “recurring-revenue, high-value services that are measurable, sticky and align to board-level priorities”, while also enabling them to differentiate from the competition, Schofield said.
“If we just focus on the channel community for a moment, it’s a really powerful thing for partners,” she said.
“When we’re talking about behavioural monitoring and human risk, it means as a partner you’re not just delivering a security awareness training programme with traditional phishing simulations and computer-based training online, you’re actually helping your customers embed a 360-degree cyber security practice.”
In the video interview above, Schofield talks about:
- Why ‘people’ are the most critical element of the ‘people-process-technology’ triangle
- Why traditional security awareness training is no longer enough to manage human risk effectively
- How PhishRod helps organisations address human risk, and the resultant channel opportunity
- How PhishRod marks itself out from competitors
This article was produced in association with PhishRod and is classified as Partner Content. What is Partner Content? See more here.