Doris in HR
"...…….. Keep training your staff, folks."
No matter how hard you try to train Doris she will still click on those links. Doris constantly receives unsolicited emails from people who want to work for her firm. It's her job to open and read them. If they contain a link to some information that the candidate wants to highlight to show why they are right for the job she has to make the decision between doing her job and doing what the IT Security trainer told her. She clicks it every time even if it has all the classic hallmarks of a badly orchestrated phishing attack. If you disable links in her email client she will discover a dozen different ways to get to the place the link points.