Run training on our Cloud LMS
Skip the integration project. Deliver, assign, and track security awareness training on our hosted platform, with the analytics, access controls, and audit-ready reporting an enterprise rollout needs. Prefer your own LMS? Export everything as SCORM instead.
From sign-up to a trained, audited workforce
Four steps, with the busywork of an enterprise rollout handled for you.
Bring your people in
Provision users with SAML single sign-on and SCIM, or import by CSV. Teams and roles map from your identity provider, and people who leave are removed automatically.
Assign the right training
Build role-based learning paths and campaigns, then assign them to users or teams with deadlines. Set annual programs to recur on their own, so compliance training renews itself.
Let it run
Automated reminders nudge people before a deadline and alert managers when someone falls behind. Employees train in their own language across five locales.
Prove it
Watch completion and quiz performance on live dashboards, then export per-person attestations and roster reports tagged to the framework you report against.
Deliver and manage every program
Assign from our library or bring your own content, and let the recurring work run itself.
A catalog plus your own content
Assign from the interactive exercise catalogue across security awareness, privacy and compliance, and AI security, and upload your own SCORM packages, PDFs, slides, and videos into the same library.
Role-based learning paths
Sequence exercises with prerequisites and assign by team or role, so developers get application security while finance focuses on business email compromise and wire fraud.
Campaigns and annual recurrence
Schedule campaigns, auto-enroll by team or filter, and set learning paths to recur each year with grace periods, so your annual training renews without anyone rebuilding it.
An experience people actually finish
A game layer that earns completion, certificates worth keeping, and training in each person’s own language.
Badges, achievements, and streaks
Earn badges from Common to Legendary, unlock achievements, and build learning streaks. The game layer is what turns a compliance chore into something people come back to.
Certificates that verify themselves
Every completion issues a downloadable PDF certificate with a public verification link anyone can check, and expiry reminders prompt a renewal before it lapses.
Train in their own language
Content is delivered in English, Ukrainian, Dutch, Italian, and German out of the box, with more on request, so global teams learn in the language they work in.
See exactly who needs attention
Live dashboards for the program manager, plus the nudges that keep training moving on their own.
Live analytics dashboards
Completion rollups, quiz scores, the hardest questions, engagement trends, and the people falling behind, broken down per user and per team.
Automated reminders and escalation
Reminders go out before a deadline and escalate to a manager when someone keeps missing it, so you are not chasing completion by hand.
Scheduled reports
Weekly and monthly summaries land in stakeholders’ inboxes on their own, so leadership sees progress without logging in.
Prove it to your auditors
The evidence a SOC 2 or ISO review asks for, exported or synced without a scramble.
Audit-ready evidence
Export per-person training attestations and tenant-wide roster reports as PDF or CSV, tagged to the framework you report against: SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, NIS2, DORA, the EU AI Act, and more.
Audit log and access reviews
A security event log and quarterly access reviews hand your auditor the trail they ask for, instead of a manual export scramble the week the audit lands.
Evidence that writes itself
Training completions flow automatically into Vanta as control evidence, and every person carries a human risk score, so the record stays current.
Enterprise access and administration
The identity, role, and branding controls procurement and security will ask about.
SSO, MFA, and SCIM
SAML 2.0 single sign-on with any compliant identity provider such as Entra ID, Okta, or Google Workspace, enforceable MFA by authenticator app or email code, and SCIM 2.0 provisioning that adds and removes people as your directory changes.
Roles, teams, and permissions
Group people into teams by department, location, or risk, give managers visibility into their own reports, and use custom roles with fine-grained permissions to keep sensitive data restricted.
Your brand, your domain
Put the platform on your own domain with your logo and a verified sending domain, and lock access to approved IP ranges for users on your network or VPN.
Frequently Asked Questions
What is the RansomLeak Cloud LMS?
The Cloud LMS is our hosted platform for delivering, assigning, and tracking security awareness training. It is the alternative to exporting SCORM packages into your own learning management system: instead of running the training elsewhere, you run it on ours.
It includes the catalog, learning paths, campaigns, analytics, access controls, and compliance reporting an enterprise program needs.
Do I have to use your platform, or can I use my own LMS?
Either one. If you already run a learning management system, export RansomLeak training as SCORM packages and deploy them there. If you would rather not, the Cloud LMS gives you the whole program without an integration project.
Both run the same content, so the choice is about where you want completion data to live.
How do users sign in and get provisioned?
Through SAML 2.0 single sign-on with any compliant identity provider, including Microsoft Entra ID, Okta, and Google Workspace. SCIM 2.0 provisioning creates and deactivates accounts automatically as your directory changes, and you can also import users by CSV.
MFA can be enforced organization-wide using an authenticator app or an email code.
Can we put it on our own domain and brand it?
Yes. Run the platform on your own custom domain with your logo, and send notification emails from a verified sending domain of your own. Employees see your brand, not ours.
You can also restrict access to approved IP ranges so only people on your network or VPN can sign in.
What languages is the training delivered in?
Content is delivered in five languages out of the box: English, Ukrainian, Dutch, Italian, and German. Additional languages are available on request.
The interface and exercises follow the language each person is using, so global teams train in their working language.
Can it produce audit evidence for our compliance frameworks?
Yes. Export per-person training attestations and tenant-wide roster reports, tagged to the framework you report against, across SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, NIS2, and more.
Training completions can also flow automatically into Vanta as control evidence, so the record keeps itself.
See RansomLeak in Action
Try the free exercises or book a demo to see analytics, SCORM export, SSO, and custom content in your environment.