| Chapter | Details |
| Partner | Goce Delcev University |
| Title | Cybersecurity Training for Employees |
| Service | [Insert Service Identifier] |
| Target Group | Employees in the public sector |
| Format | Workshop |
| Focused on Key Technologies | AV programs, firewalls, e-mail clients, web browsers, VPN, cloud storage services, password managers, … |
| Status | Ready to offer |
| Stakeholders from SME/PA Side | Public sector in Republic of N. Macedonia |
| Requirements for Participation | No requirements for participation |
| Estimated Duration | One day, 4×45 minutes. |
Description of the Course
Introduction: In the new National Cybersecurity Strategy 2025-2028, there is a Priority Area 3 – General Resilience to Cyber Threats, with a defined first specific objective – Increasing awareness of cybersecurity and disinformation in cyberspace. One of the measures is mandatory cybersecurity training for all public sector employees. This course will contribute to increasing the awareness and knowledge of employees about cybersecurity.
Technical Context and Examples:
Objective 1: To equip employees with essential cybersecurity knowledge and best practices to protect organization data, recognize threats, and respond appropriately to security incidents.
Within the course, participants will be introduced to common threats like phishing, BEC scams, ransomware, malware, social engineering, botnets, etc., and they will learn about real-world examples of security breaches caused by human error. They will learn about password attacks and authentication and passwords best practices, risks of using public Wi-Fi LANs and advantages of using organizational VPN, secure browsing habits and safe online shoping, encryption of stored data and data in transfer, importance of backup, software updates and patches, AV programs, firewalls, dealing with old devices and E-waste, using of safe configurations for devices and software, using of cloud storage services, etc.
Detailed Explanation of Core Concepts: The course emphasizes practical exercises together with theoretical knowledge. Participants will work with various example messages (email and SMS) and will try to recognize insecure messages, to generate strong passwords, to browse securely, to back up data to the cloud, to use password managers, etc. At the end of the training, a short quiz will be presented to the participants, for summarization of what is learned.
Conclusion and Unique Value: Taking into account how much increasing awareness of cybersecurity between public employees is important for our country, we decide to offer this general cybersecurity course. The unique value of the training lies in its practical, hands-on approach to different comon threats and safe online habits. It is designed to be accessible for everybody.
Additional Course Information
| Category | Details |
| Value of Service | Participants will acquire knowledge and skills, including: |
| Skill 1: learning to recognize and avoide common cybersecurity threats.
Skill 2: learning best practices for passwords, authentication, data protection, and learning safe browsing habits. Skill 3: using tools like AV programs, firewalls, cloud storage services, password managers, etc. |
|
| Learning Methods Used | Mix of lectures and hands-on exercises, together with group discussions |
| References/Resources | [1] National Cybersecurity Strategy 2025-2028
[2] DCAF Cyber hygiene course for civil servants [3] ISACA Cybersecurity Fundamentals [4] Introduction to Cybersecurity Essentials |
| Overview Slides |