To keep CybSafeβs implementation smooth, we recommend following the below steps.
These steps are not in a particular order, but rather a great place to find everything to be done.
Our interactive onboarding checklists can be found in our support widget by navigating to Tasks.
Within the support widget customers can also contact us, find help centre articles or utilise our onboarding checklists.
You can find our Onboarding tracker in our Awareness Toolkit.
It is a helpful plan that highlights all the tasks you may need to do to get up and running with CybSafe. π
β οΈ Please note, we have two different onboarding trackers depending on which plan you have. The Instructions tab will give you the information you need to know which one to use.
Our Awareness Toolkit has loads of great resources to help you run your CybSafe onboarding and security campaign!
π¬ Implementation for GUIDE, PHISH or RESPOND packages.
Follow the below information if you have purchased GUIDE, GUIDE+, PHISH or RESPOND packages.
π Set some goals
We believe in setting yourself a goal and through hard work you will achieve it! Using CybSafe should not be any different.
Give some thought to what would mean a successful implementation, what would mean CybSafe was a success within your business?
Timeframes - How quickly do you want to launch and what would mean the launch was a success?
Define your goal! This might be launched to a certain office with 50% of users logging in and completed 3 CybSafe Goals.
Define your metrics to measure and what you would report internally.
π Decide approach
It's always handy to think through what are your areas of focus with CybSafe?
Define your roll out, a phased approach with smaller groups, then office locations then rest of the world. Or is it a big bang?
You can phase your roll out in terms of users onto the platform and phase the introduction of features and content they may have available.
Communications is key!! This ensures your people understand the requirement, they are aware of CybSafe and who we are.
Without communications you can erode trust in the platform. We have various templates in our Awareness Toolkit to help you .Make a decision if you are using CybSafe's auto generated invitations mails or if you would prefer to send these yourself internally. We always advise to use our emails to save you the manual work.
Do you have a requirement for a pilot group? We always recommend a small test group to ensure your setup is correct. You will need to define the audience as well as all communications for this group. Everything you do to roll out to this pilot group will be almost identical to a full launch.
βοΈ General
There are some basic things you need to get right to ensure you set off on the right foot.
All of these items are listed in your General task list that you can find in our support widget under Tasks.
Orientation: Run through our navigation tour which guides you through the various menus of the platform.
Ensure your organisation details are accurate.
Hot tip: setting your language on this menu sets the default language for any users you add to the platform moving forward.
Configure the CybSafe platform with your organisations branding to make it instantly identifiable.
Ensure you tweak your allowlisting settings in ALL tools that may filter incoming emails. Ensure you add our IP addresses to all rules policies and tools that may hinder email delivery.
Work through our instructions on adding your people to the CybSafe platform. There are 4 possible routes to take.
Add individual users manually.
Add users in bulk via CSV upload.
Automate provisioning with an integration to your directory.
Utilise just in time provisioning once you have setup your SSO, just share your unique SSO URL.
Setup Single Sign on to ensure ease of users for your people.
Review your groups to supercharge your reporting and the ability to assign features to specific groups of users.
Note: Your groups will be created by the mechanism you create your users.
It is important to create the groups you want if done manually or via CSV.
Groups can also be created via automated provisioning, so ensure your attribute mapping is spot on to meet your reporting requirements.
By default SSO mapping will update user details, get in touch with us to amend this mapping or to turn of the update user details upon login feature.
π GUIDE setup
Follow the below quick steps to get the most out of our GUIDE package
Ensure you have completed all allowlisting activities.
Evaluate all of our learning content to make a decision on what to assign to your people first.
Ensure you annotate our content to suit your internal advise and guidance.
Hot tip: You can also replace our content to make it really custom.
Assign our content using our Learning Campaigns.
Ensure your people are invited to the platform and remind them about outstanding modules.
Review our Advice feature in line with the information you want your people to have access to.
Hot tip: You can unpublish our advice to ensure your people get the help they need when they need it.
Review our default assigned Goals to start tracking your peoples security behaviours.
π§ GUIDE + setup
Follow the below quick steps to get the most out of our GUIDE+ package.
Configure your culture survey settings to measure your people's attitudes and sentiment towards cyber security in your organisation.
Understand what is possible with nudging your users to make better security decisions.
Review our behaviour nudge and alerts template library, decide what you may want to send out.
You may want to setup an integration to Slack or Teams to send nudges and alerts to your users.
Nudges and alerts can be delivered via. few mechanisms; email, Teams, Slack or browser push notifications.
π PHISH setup
Follow the below quick steps to get the most out of our PHISH package.
Ensure you have completed all allowlisting activities.
Review our phishing campaigns setup.
You may want to target specific groups with different campaigns.
Setup any report phishing integrations.
review the CybSafe simulation template library.
Create any of your own custom phishing simulation templates.
Create any custom landing pages you may want to use.
This is the webpage a user will land on if they click a link in a simulation email. i.e. a fake login page.
Use the CybSafe default Intervention page or create your own.
This is the page your people will view once they have fallen for a phishing simulation. its an opportunity to ensure your people get all the information to help them spot a dangerous email.
β‘οΈ RESPOND setup
Follow the below quick steps to get the most out of our RESPOND package.
Understand our behaviour nudges and alerts and how they can be used.
Review our behaviour nudge and alerts tempalte library, decide what you may want to send out.
Nudges and alerts can be delivered via. few mechanisms.
Email, Teams, Slack or browser push notifications.
Setup any behaviour interventions you may want to go out to your people when the exhibit risky behaviours.
Configure our 3rd party data integrations to collect objective security behaviours form other tools within your infrastructure.
Configure our event based workflows
π’ Implementation for Standard, Professional or Enterprise plans.
Follow the below information if you have purchased Standard Plan SOCIAL ENGINEERING or GATE, Professional Plan or Enterprise Plan.
π Phase 1 - Success Criteria
We believe in setting yourself a goal and through hard work you will achieve it! Using CybSafe should not be any different.
Give some thought to what would mean a successful implementation, what would mean CybSafe was a success within your business?
Timeframes - How quickly do you want to launch and what would mean the launch was a success?
Define your goal! This might be launched to a certain office with 50% of users logging in and completed 3 CybSafe Goals.
Define your metrics to measure and what you would report internally.
π Phase 2 - Decide Approach
It's always handy to think through what are your areas of focus with CybSafe?
Define your roll out, a phased approach with smaller groups, then office locations then rest of the world. Or is it a big bang?
You can phase your roll out in terms of users onto the platform and phase the introduction of features and content they may have available.
Communications is key!! This ensures your people understand the requirement, they are aware of CybSafe and who we are.
Without communications you can erode trust in the platform. We have various templates in our Awareness Toolkit to help you .Make a decision if you are using CybSafe's auto generated invitations mails or if you would prefer to send these yourself internally. We always advise to use our emails to save you the manual work.
Do you have a requirement for a pilot group? We always recommend a small test group to ensure your setup is correct. You will need to define the audience as well as all communications for this group. Everything you do to roll out to this pilot group will be almost identical to a full launch.
βοΈ Phase 3 - Technical Preparation
There are certain steps you need to take on the platform and internally to ensure your people can use CybSafe. These features ensure our platform is
Allowlisting - Follow our guidance to ensure that our emails can be delivered to your people.
Setup SSO - You can use email address and Passphrase's to access CybSafe but to create a secure and ideal user experience we recommend setting up Single Sign on.
Setup User Provisioning - To make user management simpler for you as an admin we always recommend setting up an automated user provisioning integration.
Before adding users to the platform you MUST ensure your Learning Settings are correct. As soon as a profile is created on the platform our automated emails will be sent immediately.
Conduct any required testings on any integrations to ensure they work as expected and that all relevant attributes are being sync'd with CyBSafe to enrich your reporting.
π Phase 4 - Platform Setup
We have many settings to help you to ensure that your people have the best user experience with CybSafe.
Ensure your Organisation details are correct, you can read more here.
Opt in to Early Releases.
Upload your company logo - This shows on the platform as well as in our automated emails.
Update your Organisations name if required - This shows in our invitation emails and on the platform for your people.
Add your website (optional)
Select your accounts default language - this defines the default language for any users you add to the platform.
Add or update your Primary Contact details - This ensures we know who to speak to about your account. - This email address will also show in our Welcome Email sent to your users once logged in so they know who to contact for support internally. You can toggle this email on and off in the Learning Settings page.
Approve partner access if applicable.
Evaluate the CybSafe Content available to your people, assign to them in Group management.
You may need to load your users and their groups (Departments/Divisions etc) before you can assign your modules.
Add any Annotations to the CybSafe modules.
Feature any hot topics.
Configure your Refresher Tests.
Review your Group Management structure once your people have been added.
This maybe defined through a user provisioning integration, any changes should be made in your infrastructure to sync to CybSafe.
Setup your Culture Survey.
Setup your Goals and Create any custom goals.
Setup Advice Cards and create any custom FAQ's.
Configure Learning Settings - these are crucial in how you invite and remind your users to complete their content.
We recommend turning these off until after launch, unless you want to use our auto invites as you add your people tot he CyBSafe Platform.
Add your People - We have Four ways to add your people.
Manually add individual users
Bulk upload via CSV
Sync via use provisioning
JIT (Just in Time) Provisioning - requires SSO setup and your SSO url shared with your people.
Configure Phishing Simulations.
πΌ Phase 5 - Rollout
Everything you have done in the above 4 phases has led to this point, breathe! π
Some of the tasks below would have been defined and built in previous phases.
Implement any lessons learnt from pilot group
Ensure leadership buy in - We can help you in our Awareness Toolkit
Organise an internal launch session if applicable.
Our customers have great success with engagement and their roll out when hosting an internal event.
Usually boosts awareness of CybSafe, engagement with the product and overall interest in Cyber Security topics.
Send any internal communications.
Comms announcing CybSafe for wider business context.
A get ready for Launch comms.
Invitation Comms if you are not using our automated emails.
π Phase 6 - Post Rollout
Apart from giving yourself a pat on the back for your hard work. π€ It's now time to monitor your deployment and focus on achieving your goals you set out in the beginning.
Turn on your Learning Settings - You may have left these off while you manually did the roll out. Now is the time to turn on any reminders and automatic invites for your people.
Define and build your internal reporting requirements.
Conduct a lessons learned session - everyone can improve, you may want to do something different later on or for year 2 of your CybSafe journey.
Gather any product feedback and share this with CybSafe.
Enjoy your CybSafe journey.
Congratulations on your successful implementation of CybSafe! πππ₯³
Still have questions?
If you still have questions, you can contact the CybSafe team via support@cybsafe.com. Weβre on hand to help resolve any further issues!