Shields Up!

Can you prevent a cyber attack?

This concept project is an eLearning module designed to strengthen the ability for employees to pause, think and report phishing and social engineering attacks for a fictitious company called WaterVolt. This learning solution emphasizes how malicious actors exploit email, phone, and executive impersonation to target critical infrastructure organizations.

The course incorporates scenario-based learning with realistic branching interactions. In this course learners are immersed into realistic challenges that replicate phishing emails, vishing calls, and whaling attempts, allowing them to practice decision-making in a safe environment. Immediate feedback guides learners through the consequences of their choices, reinforcing best practices such as verifying requests, avoiding suspicious links, and using company-approved reporting channels.

As part of the analysis and design phase, I leveraged a customized CustomGPT that roleplayed as a cybersecurity analyst to serve as the Subject Matter Expert for this project. This accelerated development by providing accurate threat insights, industry-aligned red flags, and realistic attack examples.

By the end of the course, employees are equipped to recognize common indicators of phishing and social engineering, differentiate between legitimate and malicious requests, and demonstrate how to report phishing attempts through WaterVolt’s reporting channels.

Tools Used: Articulate Storyline 360, Vyond, Vyond AI, Adobe Premiere Pro, ChatGPT