Workplace Training
Cyber Security Quiz for Employees: Check Your Work Habits
This cyber security quiz for employees helps you spot common risks and check safe habits at work in 15 quick questions. For more practice, try the security awareness quiz for employees, review basics with the cybersecurity fundamentals test, or challenge yourself with a cybersecurity knowledge quiz.
Take the Quiz
1Which type of cyber threat involves fraudulent emails disguised as from a trusted source to steal sensitive information?
2What is a key characteristic of a strong password?
3What indicator shows that a website connection is secure?
4If you receive an unexpected email attachment from an unknown sender, what should you do?
5What does two-factor authentication (2FA) typically require?
6An email appears to come from examp1e.com instead of example.com. Which attack technique is being used?
7Which practice best enhances password security across multiple accounts?
8What term describes manipulation of individuals into divulging confidential information through psychological tricks?
9After clicking on a suspicious link and noticing unusual pop-ups, what is the immediate recommended action?
10Which cryptographic protocol is most commonly used to secure web traffic?
11What is the term for an attack that systematically tries every possible password combination?
12Before clicking a link in an email, what is the safest method to verify its destination?
13Which principle restricts user access to only the resources necessary for their job fun<wbr>ctions?
14When using public Wi-Fi, which action best protects your data?
15Which sign most strongly indicates a spear-phishing email rather than a generic phishing attempt?
16You notice multiple failed SSH login attempts followed by a successful login from an unfamiliar IP. What issue does this suggest?
17Which property of a cryptographic hash fun<wbr>ction ensures that it's computationally infeasible to reconstruct the original input?
18Zero-day vulnerabilities are unknown to vendors. Which security control is most effective at detecting such threats?
19In multi-factor authentication, fingerprints are considered what type of factor?
20To protect against SQL injection attacks, which practice should developers implement?
Learning Goals
Learning Outcomes
- Identify common cyber threats facing employees in daily operations.
- Demonstrate understanding of password security and best practices.
- Apply safe email and internet usage guidelines to prevent breaches.
- Evaluate real-world phishing scenarios and respond appropriately.
- Analyse incidents to determine potential vulnerabilities in systems.
- Master foundational cybersecurity principles for workplace protection.
Study Guide
Cheat Sheet
- Recognize Common Cyber Threats - Cyber baddies are everywhere, from sneaky phishing scams to stealthy malware and crafty social engineering. By learning to spot these villains in disguise, you'll be on guard like a digital detective. Staying sharp helps you lock down sensitive info before it slips away. Social Engineering (Wikipedia)
- Create Strong, Unique Passwords - Think of your password like your toothbrush: unique, personal, and never shared. Mix uppercase letters, lowercase letters, numbers and symbols to build a password at least 12 characters long. This powerful combo makes hacking attempts bounce right off. Mass.gov Password Best Practices
- Utilize Password Managers - Juggling dozens of passwords is tough, so let a password manager be your memory sidekick. These tools generate ultra-strong passwords for every account and store them behind one master key. No more sticky notes under your keyboard! Password Manager (Wikipedia)
- Enable Two-Factor Authentication (2FA) - Adding 2FA is like installing a second lock on your door - it only opens when you present two keys. You might enter your password and then type a code sent to your phone or generated by an app. Even if someone steals your password, they're still out in the cold. Dashlane Password Practices
- Practice Safe Email Habits - Emails can be wolf-in-sheep's-clothing, so hover over links and scan attachments before clicking. If something smells fishy - like misspelled domains or odd sender addresses - delete it or verify with the sender. Safe email habits stop malware and phishing in their tracks. Time: How to Stay Safe Online
- Stay Updated on Software - Software updates aren't just annoying pop-ups; they're critical security patches that lock out new exploits. Set your devices to update automatically and you'll always have the latest defenses. It's like regularly reinforcing the walls of your digital fortress. Time: How to Stay Safe Online
- Understand Social Engineering Tactics - Attackers love to trick your human side, using flattery, urgency or fake authority to make you slip up. By studying their tactics, you'll learn to pause, question and verify before handing over secrets. Knowing their playbook gives you the upper hand. Social Engineering (Wikipedia)
- Secure Personal Devices - Your laptop, phone and tablet are treasure chests of personal data - lock them up with strong passcodes, encryption and automatic screen locks. Treat every device like it's carrying your life story. A lost gadget shouldn't mean lost secrets. 12 Best Practices to Secure Passwords
- Regularly Back Up Data - Backups are your safety net when a cyber incident strikes or hardware fails. Schedule regular backups to the cloud or an external drive so you can bounce back without breaking a sweat. Think of it as having a time machine for your files. Tom's Guide: Security Spring Cleaning
- Stay Informed About Cybersecurity Trends - The cyber world evolves at warp speed, so keep learning about emerging threats and new defense strategies. Follow blogs, news sites and experts on social media to stay ahead of the curve. Knowledge is your best antivirus. Time: How to Stay Safe Online
Explore More
Human Resources Quizzes
AI-DraftedHuman-Reviewed
Reviewed by
Updated Feb 21, 2026