Sustainability Report - FY 2023

Social and societal information Information System Protection

Actions implemented Training and awareness-raising for employees While technology is often an essential recourse against cyber threats, the Group deploys a number of initiatives with regard to its employees. The Group is therefore conducting a training and awareness-raising campaign for resilient teams. In this regard, and in order to ensure that the training is carried out in a structured manner, a new awareness

programme for the Group’s employees has been developed (Cyber Awareness Programme). This programme consists of a set of initiatives that enable the management of the organisation’s human risks by training users on potential threats related to cybersecurity. It aims to strengthen end-users within the Group to protect themselves against cyber threats, increase their awareness of cybersecurity best practices and develop a security culture, which will strengthen the one present within the Group. By implementing this programme, the Group seeks to reduce the likelihood and impact of potential security incidents.

Trainings carried out during the year 2023

Q1

Q2

Q3

Q4

General awareness training

Tailored awareness training Cybersecurity awareness month

Bites & Bytes

Security alerts & News

Quarterly security newsletter

Phishing simulations

In addition to the mandatory monthly training for all employees and the quarterly phishing campaign, the programme expanded on previously proposed initiatives. One of the evolutions of the programme was the implementation of an annual Cyber Awareness Month, which was carried out for the first time in October 2023. The trainings during this month were focussed on digital security awareness and empowering employees on protecting their personal data from cybercrime. During the month, the Group organised:  3 awareness trainings (Cloud Security, Secure Web Browsing and AI Chatbot Threats);

 1 phishing simulation;  3 live sessions with tests and an exchange of questions and answers  SOC Threats and Trends,

 The Art of Password Management,  Security & Technology Roadmap.

In addition, the Group has launched a new Security Awareness page on its Intranet to share best practices, security newsletters and security alerts with all its employees.

Key monitoring indicators

2022

2023

Number of training modules provided to all Group employees

7

10

Employee training and awareness of IT security

Number of phishing campaigns delivered to all Group employees

4

4

58

Exclusive Networks SA

2023 Sustainability Report

#WeAreExclusive