π Security Awareness Training Program
1. Purpose
This document outlines Nemu Inc.βs security awareness training program and its target audience.
2. Scope
Applies to:
- All employees.
- Long-term contractors with ongoing access to internal systems or customer data.
3. Training Content
The security awareness program covers:
- Data protection and privacy expectations.
- Use of approved tools.
- Password hygiene, MFA usage, and phishing recognition.
- Incident reporting procedures and escalation paths.
- Acceptable use of company devices and accounts.
Training is delivered through:
- Onboarding sessions for new personnel.
- Periodic refreshers (e.g., annually or upon major policy changes).
- Ad hoc updates in response to new threats or incidents.
4. Attendance and Tracking
- Completion of security awareness training is tracked via internal records (e.g., HR systems, LMS, or documented checklists).
- Non-completion is followed up by HR or the Security Lead.
5. Audit Evidence
- Training materials or slide decks.
- Sample training schedule or communication.
- Attendance records or completion logs.
6. Compliance Mapping
- SOC 2: CC2.2
- ISO 27001:2013: A.7.2.2
Contact: support@mynemu.com
Β© 2025 Nemu Inc.. All rights reserved.
Last updated on