Many organizations (including ours) have documented processes, procedures and policies covering many aspects of their business. 


We have developed a comprehensive Phishing Awareness and training policy that you can customize for your needs. 


This policy is at a high enough level to fit into an overall information security policy suite and mentions phishing, smishing, vishing as well.

It has placeholders for information such as company name, and logo, and is industry neutral, so it should be easily customized for your for any clients, or even your own organization.