Abstract
Conference Title: 2018 21st Saudi Computer Society National Computer Conference (NCC) Conference Start Date: 2018, April 25 Conference End Date: 2018, April 26 Conference Location: Riyadh, Saudi Arabia Phishing is a form of attacks that conduct by tricking the users to be as legitimate entity user. With a huge usage of electronic mail, email phishing attacks become the common type of electronic phishing. As a result, the organizations become an attractive target to the attackers in order to steal the organization’s sensitive information or to do malicious actions. From this point, the anti-phishing awareness and training is considered as a persistent need. In this paper, the researchers focus on the electronic mail phishing that target governmental and private organizations in Riyadh. The researchers evaluate the current security training and awareness of employees in Riyadh through a survey. This paper discusses the result of measuring the electronic mail phishing awareness of the governmental and private organization in Riyadh. Besides that, it also measures the awareness of the governmental and private organizations about the importance of training and awareness against electronic mail phishing. However, there does appear to the effective awareness training in the governmental organizations more than the private one.