Engage - Overview

Updated

This article gives an overview of the functionality and benefits of Engage, and is intended for use by Administrators.

Introduction

The Engage Platform contains multiple sections:

  • Program Overview: This gives you an easy to understand, at-a-glance summary of your organization's progress with Engage.
  • Human Risk: This gives a centralized view of Human Risk across your organization, and is split into Human Risk Command Center, Risk Analysis, and Risk Response Engine.
  • Reporting & Insights: This gives you graphs and reports for Watchlist, User Performance, and also Efficacy reporting to show how effective the training has been. 
  • Training Queues: There are multiple training queues:
    • Company Wide Training: You can use this queue to view past or edit pending modules, currently scheduled for your entire organization.
    • Targeted Training: You can use this queue to view past or edit pending modules sent to targeted user groups.
    • Content Library: You can use this to preview, select and schedule user awareness training videos to your entire organization or targeted user groups, below.
  • Phishing Training:
    • Dashboard: This provides you with an overview of all of the simulation activities that have taken place at your organization, and allows you to view the data at a high-level.
    • Campaigns: This allows you to add Phishing campaigns (including Test Campaigns), manage or review simulations you’ve created, and see which have been launched and which are pending.
    • Template Library: You can use this to create, copy or customise email templates and landing pages to use as part of a simulation campaign.
    • SAFE Phish: You can use this to examine the logs of de-weaponized phishing messages received by your organization, and specific user interactions with those messages.
  • My Training Library: You can watch Engage videos, and then complete a short assessment to keep your knowledge up to date both on and offline. This is split into Company Wide Training and Targeted Training.
  • Nudges: These are rule-driven messages, sent to your users if they take good actions (e.g. reporting a Phishing email), or bad actions (e.g. clicking on a Phishing link).
  • Scorecards: These give End Users a snapshot of their risk score. Scorecards are scheduled via a Scorecards Campaign, using a customizable Scorecards Template.
  • Settings:
    • General Settings: This allows you to manage your organization's general settings, e.g. industry, correspondence email addresses and when training notifications are sent.
    • Email Templates: This allows you to view and customize the reminder notifications that are sent to users who haven’t completed their Engage tasks.

Program Overview

The Program Overview displays your organization’s progress with Engage, and allows you to:

  • Generate a high-level report.
  • See a consolidated view of real-time results from all released Company Wide Training, as well as Industry Benchmarking.
  • Seen an emphasis on the return on investment (ROI) from user security behavior management training, as well as tracking the effectiveness of the training over time. It also helps identify the types of users, departments, and locations most susceptible to attacks.
  • See helpful information and statistics on your organization's Engage. You can download this information to a PDF, for management reporting purposes.

See Program Overview.

Human Risk

Human Risk is navigated to from the Mimecast Administration Console, and contains:

  • Human Risk Command Center, which displays an overview of Human Risk over your organization, split into further sub-sections, with the ability to drill down further to view more details on Higher Risk users and Most Attacked users.
  • Risk Analysis, which displays all users' Risk data, which can be searched, filtered, and sorted as required.
  • Risk Response Engine, which you can use to view Action Logs of users who have matched each rule, and Watchlists, to display Watchlist data, and drill down by user.

See Human Risk Command Center.

 

Human Risk Command Center 

Reporting & Insights

The Reporting & Insights section contains WatchlistUser Performance, and Efficacy reports:

  • These are easy to search, filter and aggregate data across any linked directory attribute, and can be exported as a PDF file.
  • Summary boards in the Compliance Center show trend analytics behavior.
  • Graphs in the Efficacy Report  help you to understand the relationship between behavior, and security awareness. This displays interactive graphs, for easy "at-a-glance" key performance reporting.

See Reporting & Insights.

Efficacy Report 

Training Queues

Company Wide Training

The module detail in the Company Wide Training queue displays different information depending on whether the start date has been reached. The status also controls what you can do with the detail displayed.

  • For active Modules, you can:
    • View performance statistics.
    • Change the introductory email for the module.
    • Upload additional content for the module.
    • View the video, animated GIFs, and the question / correct answer, for the module
  • For pending Modules, you can:
    • Change the start date, correct answer and/or safety tip, animated GIFs, and introductory email.
    • Upload additional content for the module.
    • Preview the module from a user's perspective.
    • Display the question / correct answer.
  • You can schedule Company Wide Training modules, by using the Content Library or Preconfigured Queue.
  • You can resend a Module's invitation email, to users who have lost the original invitation.
  • You can reset a Module, to set a new release date for it; however, this will lose all statistics pertaining to the module.

See Company Wide Training Details, and Scheduling Training Modules.

CompanyWideTraining1.jpg

Targeted Training

The module detail in the Targeted Training queue displays different information depending on whether a campaign is pending, or has been released. The status also controls what you can do with the detail displayed.

  • For released Modules, you can:
    • View the Campaign Video, performance statistics, percentage of correct responses, company vs industry comparison statistics, the email sent for training, animated GIFs.
    • Review the Question Results.
    • Export the campaign's targeted user list.
  • For pending Modules, you can:
    • Change the Name of the Targeted Training Campaign, the launch date, the selected group, introductory email, and animated GIFs.
    • Upload additional content.
    • Display the Targeted Training employee question and the correct answer.
    • Preview the Targeted Training User Experience.
  • You can schedule a Targeted Training campaign, by selecting an item in the Content Library, and adding it to the Targeted Queue (with the exception of the Training Overview video).
  • You can delete a Targeted Training campaign; however if the campaign's launch date has been reached, any data associated with it is lost

See Targeted Training Details, and The Training Queue.

TargetedTraining2.jpg

Content Library

The Content Library contains video content, which can be reviewed, selected and scheduled for your Company Wide queue, or Targeted Training for specific user groups (administrator can still choose targeted groups).
You can also create Custom Modules.

See The Content Library section of The Training Queue.

Content Library

Phishing Training

Dashboard

The Phishing Dashboard provides an overview of all simulation activities within your organization, and allows you to view the data at a high level. 
You can view the analytics at an Overview or Users level.

See Phishing Training Dashboard.

PhishingDash3.jpg

Campaigns

The Phishing Campaigns section allows you to:

  • Create a Phishing Campaign, including Test Campaigns.
  • View statistics for launched campaigns.
  • Edit campaigns that have not yet been launched.
  • Delete Phishing Campaigns.

See Managing Phishing Campaigns, Phishing Campaign Analytics.

Campaigns
Campaigns4.jpg

Template Library

In the Template Library, you can:

  • View Phishing Templates.
  • Create, copy or customize Phishing  Templates and landing pages to use as part of a simulation campaign.
  • Create multi-stage Phishing Templates.
  • Delete custom Phishing Templates.

See Managing Phishing Templates, Multi-Stage Phishing Templates.

Template Library

SAFE Phish

In the SAFE Phish section, you can:

  • View logs of de-weaponized phishing messages received by your organization, and see specific user interactions with those messages.
  • Create Phishing Templates from URL Protection clicks.

See SAFE Phish Overview, Creating Templates From URL Protection Clicks.

My Training Library

In the My Training Library section, you can access your:

  • Company Wide Training: This contains the training modules scheduled for all users by your administrator.
  • Targeted Training: This contains the tutorials you've been sent by your administrator as part of a Targeted Training campaign, to review or reinforce concepts covered in scheduled Company Wide Training lessons.
  • Both of these training libraries contain a Pending Modules section (for videos you've been requested to complete), and a Previously Viewed Modules section(for videos you've completed).

See My Training Library.

Nudges

Nudges can be enabled or disabled, during Rapid Deployment.

In Behavorial Nudges, you can:

  • Enable or disable Nudges for each of Training, Simulated PhishingActual Phishing, and Other.
  • Enable or disable Rules for Training, Simulated Phishing, and Actual Phishing.
  • Customize the message that's sent to users (including which videos, as required), for Training, Simulated PhishingActual Phishing, and Other (the latter includes the message customization for "Security Champions, Quarterly").

See Behavioral Nudges.

Behavioral Nudges

Scorecards

Scorecards show End Users their risk level.
With Scorecards, you can:

  • Use the Scorecards Template to configure and update the Scorecard Template.
  • Schedule Scorecards Campaigns, to send Scorecards to selected Recipient Groups.
 Scorecards Overview

See Scorecards.

Settings

General Settings

The General Settings section allows you to configure:

  • Select Default User Groups: Select groups of users (profile or local(Cloud) groups are not supported) to receive scheduled modules. 
  • Select Inactive User Group: Select groups of users (profile or local(Cloud) groups are not supported) to exclude from training modules, phishing campaigns, and reminders. 
  • Reply-to and Source Email Addresses: Replace the default postmaster@<yourcdomain>.com email address used in messages and alerts with another email address
  • Email Recipient Name: Select the name for the module and phishing emails sent to users.
  • Industry Benchmarking: Select your organization type.
  • Training Acknowledgement: Control whether an acknowledgment is sent to users to confirm they've read and understood your security awareness policy.
  • Data Privacy Policy Alert: Check if data protection regulations require consent and notifications to users, and apply this setting to your organization.
  • Schedule Email Sending: Specify your company's communication preferences, by selecting which emails are sent to your users:
  • Suspend Email Options: Specify your company logo, and control how it is applied.

See Configuring Account General Settings.

Email Templates

You can use the  Email Templates section to set up custom branding and notification sets for Engage email notifications, for:

  • Training Campaign notifications.
  • Module Notifications.
  • Training Module Weekly Reminders.
  • Module Watchlist Notifications.

See Branding.

Related to

Was this article helpful?
1 out of 2 found this helpful

Comments

0 comments

Please sign in to leave a comment.