The safest way to ensure people don't fall for phishing scams is to block those emails before they arrive. We're reminded of this via a study by McAfee, which found that 80 per cent of office workers were sucked in by phishing mail.
As part of its monthly threat report, McAfee tested whether or not individuals could identify phishing mails. Presented with a set of ten mails, seven of which included phishing links, 80 per cent of users (in a group of 16,000) fell for at least one of them.
Reminding people not to click on suspicious links should be part of your business security strategy. However, given those tendencies, you also need to ensure that you block as many suspect messages as possible. It's hard to click on a link you never see.