Information security awareness and training for employees is today an imperative, because employees are the weakest link in the information security chain. They can easily be 'socially engineered' (or deceived) to part with their passwords, or perform acts unwittingly, which may permit outsiders entry into the company's IT system. Indeed, it is a common catchphrase in the hacker underworld that "amateurs hack systems, whereas professionals hack people". Surveys point to the fact that 70% of security breaches are perpetrated internally, often by disgruntled employees. Such inside attacks are potentially very costly. Clearly, information security is largely a 'people issue'. The aim of this service is to spread information security awareness and skills through security awareness programs for employees.