Services
Insights
Software Engineering
IT Consulting
Artificial Intelligence
Progress OpenEdge
Cloud
Security awareness is essential to protect against rising cyber threats. Darnu Group recognised this and sought to ensure its team's preparedness. In this case study, we dive into how we help them create stronger cyber threat resilience.
Darnu Group unites 30+ companies that create exclusive residential buildings in Lithuania. Their work spans real estate, sports facilities, restaurants, and unique hotels that combine quality, comfort and modernity.
The client wanted to support their employees' security awareness with security training. After reviewing the company's IT and security documents, processes, and tools, we offered a tailored security training program. We also recommended implementing a phishing attack simulation to test employees' knowledge practically.
We delivered an online training session where our security team covered the common information security threats and explained how to handle information and IT devices safely, recognise when an incident or breach is detected, and deal with an incident. After the training, we provided all learning materials and conducted a knowledge test to assess employees' understanding of the presented content.
Our team implemented a phishing attack simulation before and after security training. This helped to understand the hands-on effectiveness of the training provided. Through a simulated email campaign, we assessed how well employees follow the incident management process and their reactions to receiving suspicious emails.
Implemented security services helped to raise employee security awareness and support compliance with GDPR requirements. We also provided a detailed report with simulation and test results, giving the client a clear view of employee awareness levels.
Darnu Group prioritises company-wide security, so following the training, we recommended implementing Information Security Management System (ISMS) services. This approach ensures comprehensive, tailored information security documentation that aligns with the client’s specific requirements.
