Safe behaviour needs reminders - with the right pace

Great content matters
Of course, we are happy whenever we receive positive feedback about the content of our courses. Our NanoLearning methodology is built around the idea that each lesson should focus on one topic at a time, delivered in a short and concise format with an emphasis on reflection to reinforce learning. This is how we ensure that up to 98% of all started lessons are completed – which is essential for increasing risk awareness among learners.

Planning is just as important
As this end user points out, great content alone is not enough. We have extensive data showing how important clear and well-planned communication is before a learning program even begins. People need to understand what to expect and why the training matters in the first place.

We also know that this communication has the greatest impact when it comes from senior leadership and is reinforced by direct managers. Organisations need to demonstrate, through both words and actions, that this is genuinely important. Learning should never feel like "psychological torture," and this is where planning becomes crucial.

Our recommendation to customers is to distribute lessons every three weeks. The key to achieving what is known as spaced repetition, allowing learning to settle and be retained over time, is to reach people often enough to keep the topic relevant, but not so often that it becomes overwhelming. That's when we create the familiar "Oh right, I remember that-effect” that helps reinforce safe behaviours.

In this case, it turned out that the organisation had chosen to push out lessons every week because they were "in a hurry to reach everyone before summer." This is a very common mindset that we see among customers. It is completely understandable given the amount of information organisations want to communicate internally. However, it reflects the sender's needs and perspective. Not the learner's. That is why we always advise our customers not to "kick-start" programmes with too many lessons or try to "finish everything before the holidays." Instead, trust one of the most fundamental principles of learning:

Learning never ends
This learner believed they were "fully trained." Sorry. Nobody ever is. More importantly, knowledge alone is not enough to create safer behaviours. We know we should not click suspicious links or reuse passwords, yet we still do it. The reason is simple: we act on impulse and often choose the easiest path available.

At their core, our NanoLearning courses are designed to remind people to move from intuitive and impulsive thinking to more reflective thinking. To pause, think, and ask a colleague before clicking a link or acting on a request that feels slightly unusual. That habit requires regular reinforcement. All year round.

Cybersecurity also requires a healthy work environment
As providers of NanoLearning, we help our customers strengthen their human firewalls – one of the most important defences against cyberattacks. We know that these human firewalls are made up of assistant nurses, administrators, managers, teachers, engineers, and many other professionals working under pressure. That is why our lessons are short: they need to be realistic to complete despite busy schedules. But stress itself is also a security risk. When we’re stressed, we’re vulnerable.

We hope this story can contribute to a broader discussion about how cybersecurity also requires organisations to reduce stress in everyday work. A healthy work environment is one of the most important foundations in a good cybersecurity culture.

‍