We use cookies to give you a more relevant browsing experience and improve our website. Using this site means that you agree with our Use of Cookies Policy.


What we do

Stickley on Security was founded in 2007 with a plan to provide organizations with meaningful education and awareness solutions that employees and customers would actually embrace. As our founder Jim Stickley points out, it is simple to offer a training course but far more difficult to actually educate the participants. Our goal is to ensure that your customers and employees not only learn about cybersecurity risks, but that they can apply what they learn into their everyday lives and jobs.

SoS Solutions

Explore our solutions designed to exceed your cybersecurity education & awareness requirements.

Employee EDU

Potential new threats against your organization emerge daily. Employee EDU is designed to ensure your staff is prepared. Through our security education and awareness solutions your staff will not only be trained about important security topics but also be made aware and tested on the latest security threats.


Find Out More
Powered Cybersecurity Training

Powered Cybersecurity Training. (PCT) is designed to help solve the challenges small and medium-sized businesses face in attempting to deploy and manage cybersecurity education and phishing simulation. PCT is completely automated, including all reporting and notices. It's simple to set up your users to provide your entire organization with more comprehensive cybersecurity training than 82 percent of all other American companies.


FIND OUT MORE
Badphish Phishing Testing

Some of the biggest cyber security breaches in US history have started with a malicious email received by an unsuspecting employee. Using his past 25 years of experience breaking into organizations, Stickley has created BadPhish, the definitive next generation phishing simulator and education solution.


FIND OUT MORE
SoS Advisor

SoS Advisor was designed to address the customer security education and awareness needs of your organization. We understand that the security threats your customers face change daily. That's why SoS provides new content everyday specifically written for your customers.


FIND OUT MORE
Domain Assure

Your domain is an essential part of your brand. Protect your brand by preventing cybercriminals from using your domain against you and your customers. By protecting your domain, Domain Assure can greatly curtail spear phishing and typosquatting attacks. Most importantly, Domain Assure takes less than 5 minutes to setup and requires no additional administration once running.


FIND OUT MORE
Executive / Board Consulting

Business executives and their board members face a never-ending challenge of keeping up with the latest cybersecurity security threats. With all of the audits and reports, security budget requests and regulatory requirements, our cyber security experts can help you make sense of it all.


FIND OUT MORE

Latest Cybersecurity News

Fake Invites Dupe Outlook And Google Calendar Users

The Better Business Bureau’s Scam Tracker has been very busy. The organization posted a scam alert involving Outlook and Google Calendar users and fake events posted to their accounts. “Calendar spam” is a new and very real problem that can lead to stolen identity and malware. Users can sync Google and Outlook, so a bogus event listed on one affect both calendars. If the events are fake, the links can steal PII (personally identifiable information) as well as install malware.

Don't Wait To Update; Serious Window 10 Vulnerability Could Allow Man-In-The-Middle Attack

Indeed, Microsoft “Patch Tuesday” has come and gone this month, but don’t just brush it aside as business as usual. This week, that group of fixes contains a solution to a vulnerability in Windows 10 that could allow someone to exploit it and perform “man-in-the-middle” attacks. It was reported to Microsoft by the National Security Agency (NSA) that has been given kudos for reporting it to Microsoft rather than creating its own exploit using it.

Misconfigured Amazon Cloud Servers Lead To Yet Another Healthcare Breach

Nearly 90,000 patients had their private healthcare data exposed in a breach involving two misconfigured Amazon Web Server (AWS) cloud servers. The patient data kept in the AWS for Medico, Inc. and Amarin Pharma was publicly exposed in the breach. That information unveiled a massive amount of PHI (Protected Health Information), including Social Security numbers, passwords, banking, and insurance information, legal documents and medication history.

loo

Have questions? Call us anytime!