Cyber Security Training: GCHQ Certified Social Engineering Awareness Course

You are your organisation’s human firewall. As technical defences get better we are seeing a steep increase in the use of social engineering to enable attackers to gain access to your assets. Attaining a GCHQ certificate in Social Engineering Awareness helps demonstrate your commitment to security to your clients and makes you more confident and capable of defending yourself and your company.

What is Social Engineering?

Social engineering is defined as “Manipulating people into carrying out specific actions or divulging information that is of use to an attacker.” With our backgrounds in British Intelligence and Police Cyber Crime Unit we have seen a sharp increase in the use of social engineering by attackers around the world.

The most common form is malicious email- PHISHING followed by attacks over the phone or impersonation.

“66% of malware comes from email”

Social engineering has proved to be one of the most prolific and effective means of attacking organisations of all sizes and is commonly used to deliver malicious software or to collect valuable or sensitive information from your organisation.

It is an attack vector that is growing rapidly. You need to be able to identify and defend against attempted attacks

The GCHQ Certified Social Engineering Awareness Course equips you with the skills to identify and combat social engineering attacks. We do this by placing you in the position of the hackers to enable you to “see what the hackers see”

You will gather intelligence on fictional companies and employees before crafting your own phishing attack. This enables you to recognise the value of information on sites like Facebook, LinkedIn and Twitter and see how attackers can even use an innocent picture of you at your favourite restaurant as part of a successful cyber-attack.

The course aims to not just raise awareness of threats but also to give you the confidence to make security suggestions and discuss security concerns with colleagues.

The course is suitable for all members of an organisation, because all staff can be a target. This is particularly the case If you have access to valuable personal or company information or to online banking or technical systems. The course is not technical and is suitable for anyone who uses email and social media in their day to day lives.

The course is built on the industry approved IISP Knowledge Framework, and covers the most effective social engineering vectors and how to defend against them:

  1. PHISHING The biggest attack vector worldwide. Learn how hackers gather intelligence on people; craft malicious emails and how you can spot them.
  2. VISHING Learn how this telephone attack is used to gather intelligence; how to spot a malicious call and the techniques hackers will use to extract information from you.
  3. IMPERSONATION This is physical attack to gain access to your business and data. Posing as staff, cleaners or I.T auditors for example allows attackers into your office and behind your perimeter defences. Learn how they get in and how to stop them.

You will learn COUNTER-MEASURES to improve your own security and help to create a culture of security for yourself and your organisation.

For a full breakdown of the course objectives visit our website or email us for a brochure:

On completion of the course and short exam you will be sent a certificate of completion for a GCHQ certified course to evidence your high level of training.

What is GCHQ Accredited Training?

GCHQ is one of three UK intelligence agencies, along with MI5 and the Secret Intelligence Service (MI6). With the abundance of cyber security training courses on offer, it can be difficult for customers to identify highly competent trainers and good quality courses. GCHQ Certified Training (GCT) addresses this issue, providing customers with a choice of rigorously assessed training providers, so they can feel confident they’ll receive training that is consistent with industry best practice and delivered by high quality training companies.

Benefits of GCHQ Certified Training

About Red Goat Cyber Security

Red Goat Cyber Security provide GCHQ certified staff training helping businesses demonstrate their commitment to information security to their clients. By having your staff GCHQ trained you are not only better protected from cyber threats but you also have a GCHQ endorsed certificate to evidence your commitment to security both to your clients and under the GDPR.

We also provide other security services such as cyber-attack war-gaming, penetration testing and enhanced vulnerability assessments. We speak at major conferences around the world on cyber security and social engineering.

About the trainer

Lisa Forte is an expert speaker on cybercrime, intelligence and online footprints and founder of Red Goat Cyber Security. Lisa began her career working in counter-terrorism intelligence for a UK Government agency. Whilst there she researched the process of online radicalisation by terrorist groups and the lengthy and risky social engineering process undertaken by terrorist recruiters. Lisa then went on to work for one of the UK Police Cyber Crime Units. Lisa left the Cyber Crime Unit in 2017 to form Red Goat Cyber Security which provides GCHQ certified cyber security training as well as helping organisations prepare for a cyber-attack through the use of wargaming. She is frequently speaking at major conferences around the world on cyber security and social engineering.

Testimonials from clients

“Red Goat Cyber Security were extremely helpful and professional. Their knowledge of cyber security and table top exercising was excellent and provided a real stimulus in preparing for a potential cyberattack. We would highly recommend them to other maritime and logistic companies.” David Brown OBE, Chief Executive The Bristol Port Company

“I was delighted with how Red Goat Cyber Security delivered the cyber security table top exercise. We had a wide-ranging participation group and they were able to guide and advise as well as ensuring engagement throughout the exercise. It provoked a lot of thought and group discussion. We have learnt valuable lessons to further improve our plans, processes and check lists and would highly recommend them to other organisations”

Salisbury Hospital NHS Trust


What’s included?

The full GCHQ certified course and certificate along with refreshments and lunch at the Engine Shed.

Are there ID or minimum age requirements to enter the event?

The course is suitable for anyone 16+

How can I contact the organiser with any questions?

Any questions? check our website or email us:

What’s the refund policy?

You can get a refund upto 30 days before the event.

Do I have to bring my printed ticket to the event?

Please bring your printed ticket or show us an email.


Article by channel:

Read more articles tagged: Social Engineering