RSM Cyber2SME

A phishing simulation is a controlled exercise where employees receive realistic mock phishing emails to test how they respond. It helps organisations identify vulnerabilities, raise awareness, and strengthen their human firewall, turning employees into an active first line of defence.

This complimentary phishing simulation exercise featuring a tailored, industry-specific scenario designed to assess your employee readiness and uncover hidden vulnerabilities. It includes 

• A one-time phishing simulation exercise per UEN
• Covers up to 30 employees per company for one email domain
• One tailored phishing scenario aligned to your industry
• 30-minute e-advisory session with performance report

This is a practical webinar, by RSM consultants, to equip your employees with the knowledge on cybersecurity, safe AI use, and data protection. It covers current threat trends, PDPA updates, and real-world scenarios, helping your employees to recognise, avoid, and respond to cyber risks effectively. Every participant is required to complete a quiz to validate the learning objectives and shall receive a certificate of attendance.

• Cyber Threat Landscape Awareness

  Employees gain an understanding of the latest cybersecurity threats impacting businesses today, including phishing, ransomware, social engineering, credential theft, malware, and insider threats. The training highlights how attackers exploit human behaviour and common workplace vulnerabilities.

• AI Risk Awareness and Responsible Use
  With the growing use of generative AI and AI-powered tools in the workplace, employees learn how to safely and responsibly use AI technologies while understanding associated AI risks. Uncover practical guidelines for the secure adoption of AI within business environments.

• PDPA and Data Protection Essentials 

  The training provides updates on key Personal Data Protection Act (PDPA) requirements and data protection responsibilities, helping employees understand the key obligations and business implications. Employees also learn how to reduce the risk of accidental data exposure and strengthen day-to-day data handling practices.

   

• Emerging Technology and Business Risks 

  The programme covers evolving risks associated with modern technologies, cloud adoption, remote work environments, and digital collaboration platforms, helping employees stay informed about emerging attack vectors and security challenges.

   

• Cyber Hygiene Best Practices 

  Participants are guided through practical cybersecurity habits, fundamental internal controls and IT governance measures that strengthen organisational resilience.

   

This is an in-person workshop featuring a guided data breach simulation where key stakeholders work through a “real-life” cyber incident to test their response plans, decision-making, communication and coordination. This helps uncover gaps before a real attack, improves response speed and communication, and strengthens overall preparedness, disaster recovery planning, and business continuity.

Participants will be guided through any combination of the below cyberattack scenarios:

• Ransomware attacks
• Phishing and business email compromise
• Data breaches and data leakage
• Insider threats
• System outages and operational disruptions
• Third-party or supply chain incidents

The exercise is designed for management teams, IT personnel, cybersecurity teams, and key business stakeholders involved in incident response and decision-making.

During the session, participants will assess how the organisation detects, responds to, escalates, communicates, and recovers from a cyber incident based on existing policies, procedures, and business continuity plans.