this post was submitted on 18 Feb 2026
6 points (100.0% liked)
cybersecurity
5915 readers
14 users here now
An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!
Community Rules
- Be kind
- Limit promotional activities
- Non-cybersecurity posts should be redirected to other communities within infosec.pub.
Enjoy!
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Spent some time looking for ideas on how to do a security training (compliance requirement) that didn't suck. Cribbing from some reddit posts, I think I'm going to give everyone a notecard with something like "Is Bob Bobson a client here", have them pair up, and do a little phone conversation roleplay where one person is a visher trying to trick the other into revealing the piece of information, while the other person gets practice saying "No." Seemed like a good way to let the staff dip a toe into thinking like an attacker.