CyberCompare spoke to Philipp Bülow, CEO at lawpilots, about e-learnings.
Dear Philipp von Bülow, can you please briefly introduce yourself by telling our community a bit about your background and how you got into the cybersecurity market?
I have been in the legal tech scene for quite some time and founded Jurato.de in 2013, which was acquired by anwalt.de in early 2018. After my exit, I advised some large financial companies as well as startups in the legal tech space before moving to lawpilots as Managing Director in 2019, which among other things also offers employee training for information security.
What exactly does lawpilots do?
lawpilots is a leading e-learning provider for topics such as IT security, data protection, compliance, ESG and occupational health and safety. The legal-regulatory challenges in the work environment have increased significantly in recent years. Employee knowledge is critical to a company’s security and future success.
We know legal employee training is too important to be complicated. That’s why we develop e-learnings that are effective because they are easy to and evoke emotion and enjoyment.
What types of companies or industries tend to benefit the most from your offerings?
In fact, every industry benefits from employee training and especially when it comes to cybersecurity. 95% of all cybersecurity breaches happen due to human error. With our e-learnings, companies transform their employees from being at the greatest risk to being at the greatest IT security protection.
What sets you apart from other well-known providers?
Our promise of quality is unique. Through innovative learning methodology and leading legal expertise, we create a learning process that has a lasting impact. Using a mix of real-world examples, explainer videos, gamification, expert interviews, and storytelling, we engage employees on even the most complex topic. Our legal-regulatory expertise has won multiple awards, is always up to date, and has been proven to make companies safer.
Apart from that, we are also a one-stop-shop for key employee training and are also very proud to offer 45+ e-learnings and 35+ language and country versions.
How do you determine the scope of a training? What factors do you consider when selecting methods?
Our standard “Information Security for Employees” training has six chapters. Employees learn everything from how to recognize phishing emails to how to properly deal with cybersecurity breaches. The training lasts a maximum of 45 minutes in total and can be paused at any time without losing the current status. It is also possible to train only individual modules such as “Secure mobile working” and “Ransomware”. These e-learnings then only last a maximum of 15 minutes.
We use the latest learning methodology with adaptive learning paths, storytelling and gamification. The story in e-learning ultimately determines the methodology. We like to let our users slip into roles in which they are faced with a challenge and have to solve it in the best possible way. In our IT security training, you slip into the role of a hacker and have to try to hack a company. This excites our training participants because it is playful and multimedia-based.
How does lawpilot keep up to date with the latest developments in the cybersecurity landscape?
Of course, we constantly educate ourselves and attend many professional events, such as the itsa trade fair, where we are also exhibitors this year. We are also members of various associations, such as IAPP, to stay up to date, but also to be part of further development.
Is there some kind of success control for the trainings?
Yes, our Management Cockpit is a clear platform to keep track of purchased e-learnings and at the same time manage participants efficiently. All you need is an Excel list for importing employee data and you’re ready to go. Automated reminder emails can be sent, and the status of the employee training can be viewed in real time.
How often should companies conduct training and how can they integrate it into their overall security strategy?
We recommend conducting information security training for employees once a year. In the following year, refresher training may also suffice.
The German Federal Office for Information Security (BSI) also recommends regular staff training. With lawpilots, this can be done easily, flexibly, and sustainably.
What other security services does lawpilots offer besides employee training to help companies strengthen their security posture and protect themselves from cyber threats?
We also offer a phishing simulation in combination with our IT security training. For example, after or before an e-learning session with us, a phishing test email can be sent to certain employees to sensitize them to this topic in a fun way. Employees receive a defined number of simulated phishing mails in three different levels of difficulty, which are optimally adapted to the respective company and its employees.
Thanks to Philipp von Bülow for his time!
In our day-to-day business, as your independent partner we analyze customer requirements towards cybersecurity and identify suitable providers of products and services. Therefore, we have collected a significant number of interesting provider and solution profiles. Of course, this does not include any recommendations for products or providers. If you are interested in an interview with us, please send a short message to cybercompare@bosch.com.
Please remember: This article is based our knowledge at the time it was written – but we learn more every day. Do you think important points are missing or do you see the topic from a different perspective? We would be happy to discuss current developments in greater detail with you and your company’s other experts and welcome your feedback and thoughts.
And one more thing: the fact that an article mentions (or does not mention) a provider does not represent a recommendation from CyberCompare. Recommendations always depend on the customer’s individual situation.