The New Customer · NIS2 · ISO 27001

Cyber security basic training for safe decisions at work.

The mission "The New Customer" trains NIS2- and ISO 27001-aligned awareness behaviour around phishing, identity protection, customer data, and secure workflows.

PhishingMFAcustomer datacloud sharingparticipation record

A normal customer contact becomes a security decision.

The preview shows how quickly phishing, MFA requests, customer data, and internal reporting paths meet in daily work and why short, clear decisions matter.

What the mission covers.

Employees experience typical situations from office work, remote work, customer contact, and digital collaboration. Each decision shows which behaviour is secure, traceable, and suitable for internal evidence.

The training works as a cyber security baseline module for organizations that want awareness without a learning-platform project, but with a knowledge check and participation record.

NIS2-related content.

The focus is on reporting paths, access protection, and protecting critical information in everyday work.

Recognize and report phishing

Assess lookalike websites, suspicious attachments, QR codes, and unusual requests safely.

Protect MFA and identity

Handle authenticator requests, number matching, password managers, and the rule never to share codes.

Secure customer data

Protect customer, contract, personal, and access data and limit cloud sharing by purpose, recipient, permission, and expiry date.

ISO 27001-related content.

  • Information classification: distinguish public, internal, confidential, and strictly confidential information.
  • Need-to-know: share customer documents deliberately and limit access traceably.
  • Secure workspaces: apply clean desk, secure disposal, screen lock, privacy protection, and controlled devices.
  • Limit AI tools: do not enter customer data, access data, or incident details into unapproved AI tools.
  • Prepare incident response: collect evidence, report cleanly, and avoid passwords or private details.

In short.

The mission trains NIS2- and ISO 27001-aligned behaviour in everyday work, especially around social engineering, customer data, access protection, reporting paths, and incident response.