You've successfully subscribed to INFIMA Security
Great! Next, complete checkout for full access to INFIMA Security
Welcome back! You've successfully signed in.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info is updated.
Billing info update failed.

What's the Big Deal with Course Libraries?

You can't take a thousand courses, so why exactly are you paying for them?

It's Friday night. You're ready to tuck in for a little Netflix time.

You pull up the app on your tv. And you start scrolling through movies and shows.

And you keep scrolling.

And then sometimes you keep scrolling even more...

Until you finally just pick the first thing that piqued your attention 25 minutes ago.

Sometimes it's great to have lots of options - depending on your mood, time of day or just because someone told you to check out a new show. There's no right or wrong answer. It's your "you" time.

Now, at work, it's not always great to have a lot of options. This is especially true when it comes to regulatory and compliance mandates. In these situations more options cause more work and more stress.

Ok, so what's the answer?

This is where you normally hear "well, it depends...".

It does depend on your industry, cybersecurity insurer's requirements and any additional stakeholder or customer demands.

This is a lot to balance. It's also why INFIMA has done the legwork for you.

Taking it from the top, effectively all Security Awareness Training mandates initially flow from NIST - the National Institute of Standards and Technology.

Excellent. If it's a great starting point for all of our various industries, then it's certainly a great starting point for your training.

Next, there are many industries with industry-specific requirements. Let's call some of them out, like Healthcare (HIPAA), Retail (PCI-DSS), Financial Services (FINRA, SEC, GLBA, NY DFS and more), Federal Contractors (CMMC). You can see more detail on these and more here.

Ok great - you've now identified your organization's Training requirements.

Now for the fun part... you now get to take a few dozen courses to figure out which ones hit the topics you need!

Now you have the burden of matching all of your requirements from regulator, cyber insurance carrier and stakeholders to the courses offered by your vendor.

Or you could do it the easier way...

Again, INFIMA does the legwork for you. We know your industry, and we know your Training needs.

So, we tailor your curriculum to your needs.

Call us crazy here, but doesn't that just make sense?

Can we put a bow on this?

Instead of making you go hunt for requirements and take a bunch of courses to find the right topics included, INFIMA provides the training courses and topics that your team needs.

You've got enough on your plate already.


A INFIMA, we make it easy:

  • Start with NIST-based curriculum
  • Include the broadest Cybersecurity Insurer requirements
  • Add in Industry and Regulator needs
  • Tie it all back to a tailored Security Awareness Training Policy (provided by INFIMA)
  • Confidently Train your team with ease!

At onboarding, we automatically tailor every client's curriculum to fit their needs.

For most organizations, this takes the form of 4 courses, delivered one per quarter. How frequently should you train your team? We've done some work on that right, and you can read more here.

All the while, your team is Phished every month, at random times and with varied content. We take the best attacks from the wild and simulate them for your team's practice and safety.

And for that tidy little bow on top - each client receives a tailored Security Awareness Training Policy to go right along with their curriculum.

INFIMA simply makes it easy to provide a complete, fully automated Security Awareness Training program.

If you're an MSP and want to learn more, go check out how we work with Partners here. If you like what you see, book a time to chat!

Photo by Andrea De Santis on Unsplash

Joel Cahill

Cybersecurity enthusiast. Entrepreneur.