Objective
Organizations worldwide struggle to measure and document the security behaviours of their employees, effectively making it impossible to know the impact of their security awareness training programs. Human error is the main source of cybersecurity incidents, and a reduction by only a few percents could translate into millions of Euros every year.
Current suppliers of Security Awareness Computer Based Training (CBT) provide training content, without being able to demonstrate end user behavioural change, only measuring training attendance or specific behaviours (pshishing assessments) that do not describe the complete use behaviours.
In contrast with existing solutions, the CLTRe Toolkit is assessing the actual ideas, habits and behaviours of the employees in order to measure and improve the security culture of an organisation. The solution stores behavioural assessments over time to provide the organization with trend analysis in order to understand behavioural change over time. CLTRe offers the first the application of social sciences to measure and improve the security culture of an organization, based on a robust framework and a comprehensive toolkit. The CLTRe approach addresses the €2.6B security computer-based training and can help reduce the 121M data breaches recorded in 2015. The CTLRe toolkit leverages the existing footprint of the Security Culture Framework (a free tool developed by CTLRe and already used by 20,000 users). The phase 1 project will validate the technical and commercial feasibility of a cybersecurity behavioural toolkit offered as Software as a Service. The project will confirm the market interest (competitive analysis, willingness to pay) and recruit corporate organizations willing to trial the prototype.
Fields of science
Programme(s)
Funding Scheme
SME-1 - SME instrument phase 1Coordinator
0160 OSLO
Norway
The organization defined itself as SME (small and medium-sized enterprise) at the time the Grant Agreement was signed.