Module 1: Introduction to Cybersecurity

• What is cybersecurity and why does it matter?
• The cost of cybercrime globally and in South Africa
• Real local case studies: ransomware attacks, banking scams, insider data leaks
• The human element in cybersecurity: 90% of breaches are caused by human error
• Understanding your role in keeping data safe

Module 2: Common Threats in the Workplace

• Phishing & Social Engineering:

• • What it looks like, how it works, how to spot a scam email
  • Live simulation: Identify the fake message

• Ransomware:

• • What happens when a device or server is hijacked
  • Real examples from SA municipalities and law firms

• Malware & Spyware:

• • How USBs, apps, and downloads can compromise your system

• Business Email Compromise (BEC):

• • How fraudsters impersonate executives to steal money

• Insider Threats & Human Negligence:

• • Data leaks through carelessness or ignorance

Module 3: Passwords, Devices, and Safe Access

• How cybercriminals crack weak passwords
• Password best practices & password managers
• The role of Two-Factor Authentication (2FA)
• Safe use of laptops, smartphones, and public Wi-Fi
• Remote work hygiene: keeping your home network safe
• Physical security: don’t write it down, don’t leave it open

Module 4: POPIA and Legal Responsibility

• Understanding POPIA’s data protection requirements
• What counts as “personal information”?
• Consequences of a data breach, fines, lawsuits, damage to reputation
• The role of the employee vs the employer in protecting information
• Secure file sharing and responsible disposal of information

Module 5: Email and Communication Security

• Verifying sender identity before clicking or transferring money
• Spotting dangerous links, fake domains, urgent language
• Risks of clicking on popups, surveys, and ads
• Communicating securely: encryption basics, trusted channels
• Using business communication tools safely (WhatsApp, Teams, Zoom)

Module 6: Incident Response – What To Do When Something Goes Wrong

• What qualifies as a cybersecurity incident
• Who to contact and how to escalate issues internally
• The importance of quick reporting (don’t fear blame)
• Steps to take if your laptop/phone is stolen or compromised
• Drafting and understanding a simple Incident Response Plan

Module 7: Building a Culture of Security

• Recognising cyber hygiene as part of your daily routine
• Creating team accountability: buddy systems, digital gatekeeping
• Practicing zero-trust thinking in day-to-day operations
• Cybersecurity as part of performance, ethics, and compliance
• Running a monthly “Security Drill” or awareness moment