write a discussion post reply to the following: Mandatory training in information security that I would ensure happened annually in my facility would be: 1. Quarterly phishing emails sent to a predetermined number of employees to see who clicks on them and who reports them to phishing. Along with these phishing campaigns, I would ensure that annual training included details about what to look for in a phishing email, what to do with it if the end user suspects phishing and the possible issues that clicking on a phishing email could cause the facility. This is a very important security issue as phishing emails can pretty easily sneak through the safeguards that are in place now. With just one click, malware, ransomeware or any number of attacks on the system could result, endangering all types of private information from the facility. 2. Protecting PHI is the second issue I would ensure is in the annual training. as I work in a hospital setting, this is so important. With HIPPA violations being something that could not only release patient health information to the wrong people, but also their insurance and financial information. These HIPPA violations can also cause the healthcare facility