User:Zeb Billy 3/sandbox

1.1 Background and Scope
Digital technology has become prevalent and ingrained in our ways of life today. These technologies are making our lives easier through faster communication, easy storing and sharing of information, among others. Everything is being digitised. However, these technologies come with great security risks. People can no longer solely rely on the usual security solutions, like antivirus software and firewalls. Cybercriminals are getting smarter, and their tactics are becoming more resilient to conventional cyber defenses. Digital threats can come from anywhere. And we must educate ourselves about simple social engineering scams, like phishing and more sophisticated cybersecurity threats, such as ransomware attacks, to protect ourselves from malicious attempts to steal intellectual property or personal data.

Digital security and privacy are important. For human rights advocates, journalists, activists, and ordinary citizens, the possibility of your communications being monitored or your personal identity or location being exposed present considerable risks, especially if you are working with sensitive information. A thorough digital security strategy is essential, as it will only be as strong as its weakest link.

The digital risks that activists, journalists, digital rights defenders, academics, and marginalised groups face have grown substantially over the past few years. Such risks often arise in authoritarian regimes pushing for digital policies that violate and criminalise citizens’ fundamental rights, such as their right to assembly, association, and freedom of expression online. Both at the policy level and during implementation on the ground, many governments currently engage in the circumvention of encryption and investment in mass surveillance technology, while censoring citizen voices online. Such common internet freedom challenges that transcend country borders led to the formation of the Greater Internet Freedom (GIF) project.

Training is a critical part of the GIF project and will help increase the capacity of civil society organisations (CSOs), media outlets, and individuals in both preventative and responsive digital safety approaches. It will also increase the number of local digital safety experts able to advance the digital safety capabilities of civil society and media organisations and individuals.

Through this training program, participants will be able to enhance their knowledge on the following digital security concepts:


 * Risk assessment
 * Digital hygiene
 * Malware and protections
 * Free and open source software (FOSS)
 * Browser security and privacy
 * Password management
 * File and folder protections
 * Backups
 * Data and communication encryption
 * PGP and email encryption
 * How the internet works and network encryption with virtual private networks (VPN) and Tor
 * Privacy and security on social media
 * Risks associated with mobile phones and use of secure communication tools
 * Training planning and preparations

1.2 Points of Contact
The content of this training curriculum is based on previous training experience and may need to be adapted for specific contexts and training needs. Please feel free to contact the following for assistance with your training curriculum.

1.3 Document Organisation
This curriculum document is created by EngageMedia for GIF country partners in designing their digital security curriculum.

The curriculum document is open source, licenced under Creative Commons BY-SA 4.0. This means you are free to Share (copy and redistribute the material in any medium or format) and Adapt (remix, transform, and build upon the material) the document for any purpose, even commercially, as long as you Attribute and give appropriate credit to EngageMedia, and ShareAlike.

= 2.0 Instructional Analysis =

2.1 Needs and Skills Analysis
Before each training session, it is recommended that participants undertake a needs and skills analysis. Each participant is different and they have different work areas, which would translate to differences in their needs and the security risks they face. It is also good to know about the participants’ existing knowledge level to choose the most appropriate topics and training methodologies.


 * 1) What is the most important principle in digital security?
 * 2) * Update antivirus program
 * 3) * Update operating system
 * 4) * Trust no one
 * 5) * Don’t open email attachments
 * 6) How many characters should your password have at minimum?