URSA
UX DESIGN
RESEARCH
Overview
Ursa is a desktop security tool designed for small businesses, offering protection against phishing attacks. It screens incoming emails, educates employees on recognizing phishing attempts, and streamlines the reporting process. This ensures a secure email communication environment, boosting employee confidence in their digital safety.
Specifications
Role: Team lead, UX Research
Duration: 10 Weeks
Team: group of 5
Tools: Figma, Illustrator
Problem Discovery
In an age of evolving technology and AI, personal information security is paramount. Phishing attacks exploit vulnerabilities with psychological tactics. Ursa was developed to counter this threat, securing our digital world.
Targeting small businesses, often vulnerable despite cybersecurity, due to their sensitivity to resource loss, making them prime for phishing attacks.
The first step was to began with secondary research to understand the scope of the problem space we were entering. It was crucial to identify which groups face phishing attacks daily, as well as the market and strategies employed by phishers.
25% of the phishing attack is towards the small businesses
more than 70% of the small businesses are not prepared against the phishing attacks
Over $1 million is lost from phishing attack in 2023, and it is rising.
It is clear that small businesses constantly face challenges with phishing emails, struggling to secure their data and resources daily. Even with security measures in place, phishing attacks target people directly, making complete protection difficult.
Taget Audience
For small businesses, even a minor loss of information or resources can be critical, which is why we prioritized them for our efforts.
Our target audience consists of inquisitive, tech-savvy small businesses facing challenges in securing their networks due to limited resources for in-house cybersecurity specialists. Our platform is specifically designed for those deeply concerned with cybersecurity, offering a solution to bolster their defenses against digital threats.
Expert Interviews
25 Survey Responses
60% of employees have some form of cybersecurity program. However, only 40% of those with programs are satisfied with them.
User Interview
Gathered over 100 insights, Their experience with the phishing emails validated that the problem is severe and needs an improvement as soon as possible.
Expert Interview
Interviewed 2 experts provided knowledge to facilitate the better protections and employee education.
Turns out, current cybersecurity tools aren't cutting it. Our interviews shed light on how people fall for phishing scams. The experts pointed out some solid protection strategies, which are scattered across different platforms that we could bring them together and improve.
Persona POV
Created the persona POV and empathy map to illustrate the scenario where we can fully satisfy the people who are involved with the phishing email situations.
Idea Dump
The purpose of this activity is to provide the team a little break from the pressure of thinking the right things every time and making the "correct" decisions every time. It was done in a new environment, with no time constraint, and we drew fun features as we talked about topics outside of the project.
Feature Feasibility
Lo-Fi Sketching
Once the features were listed out, each team member drew out the set of lo-fis, visualized the mid-fi by choosing the strongest visualization of informations.
Sitemap
Focused on informativeness and intuitiveness. The platform would notice suspicious emails, then the employees would report the emails with an intuitive button.
The progress was reported as a team, collectively making the environment much safer for communication.
Userflow: Email Widget
We realized that focusing our efforts solely on the computer app wasn't enough. The real impact needed to be where the actual communication happens, right in the email interface itself.
Interface Developing
In order to successfully inform extensive amount of data, following three factors were essential in our interface.
Simple Design
Clear Userflow
Intuitive Information Architecture
Usability Testing
We've reached an exciting milestone with our functional prototype now ready for user testing. Usability testing and expert evaluations have been conducted to ensure a seamless experience for both employees and employers, and the feedback has been effectively implemented.
Conducted 15 of A/B testing
6 usability testing
2 Expert Evaluation
Final Design
Brand Development
Hi-Fi
Employee Interface
We recognize employees' time constraints regarding security matters. Consequently, we've implemented concise, strategically placed information across the platform. Our email reporting education campaign is designed for high visibility and easy engagement.
Employer Interface
Displayed crucial information for employers, ensuring that they are well aware of the cybersecurity situation in their business. Tracking the amount of phishing emails as well as the progress of employees will provide enough information to keep the business safe.
Email Widget
The monitoring of phishing emails becomes ineffective if malicious messages go unreported. To address this, we have implemented an email widget that ensures a consistently visible and intuitive method for reporting suspicious communications.
Vision Video
