Pick the Program That Matches What You Are Running
Same 100+ exercise catalogue, different rollout playbook. Each use case includes the assignment template, audit evidence pack, and rollout timeline that match how security teams actually run that program.
By Dmytro Koziatynskyi Last reviewed
New Hires
Roll out security awareness to every new hire in their first 30 days. HRIS-triggered assignments, manager visibility, and audit-ready completion records per employee.
Try the exerciseSecurity Awareness Training
Run the yearly mandatory refresh for the entire workforce. Mapped to HIPAA, GLBA, NYDFS, ISO 27001, GDPR, and NIST 800-171 with per-control evidence at the end of the cycle.
Try the exerciseRenewal Readiness
Meet carrier renewal requirements for security awareness training. Travelers, Chubb, Coalition, At-Bay, Beazley, and AXA XL all ask for proof. Generate a broker-ready evidence package in 90 days.
Try the exercisePreparation
Prepare for SOC 2 Type II, ISO 27001 surveillance, HIPAA OCR, NIST 800-171, and CMMC assessments. Each exercise maps to control IDs, with completion and scoring records ready to drop into the audit portal.
Try the exerciseRemote and Distributed Teams
Train a fully or partly remote workforce on the threats they actually face: home networks, vishing, collaboration-tool abuse, and async credential theft. Time-zone-aware completion windows with per-region reporting.
Try the exerciseContractors & Vendors
Extend security awareness training to contractors, MSPs, BPO partners, and consultants. Per-engagement assignments, evidence-pack delivery, and BAA-aligned records.
Try the exerciseRehearsal
Workforce-side tabletop and scenario rehearsals for live incidents. Cuts time-to-report, prevents make-it-worse mistakes, and feeds gap analysis back into the IR plan.
Try the exerciseM&A Due Diligence
Pre-deal SAT-program assessment, day-one baseline rollout, and 90 to 180-day integration with the parent framework. Closes a common due-diligence finding fast.
Try the exerciseLMS Migration
Move security awareness training off KnowBe4, Proofpoint, SANS, Cofense, Hoxhunt, or NINJIO without losing completion history. Controls re-mapped, audit gap closed, license costs cut.
Try the exerciseAwareness Reporting
Quarterly cyber-committee reports tied to risk reduction. SEC-aligned narrative, industry benchmarks, and a board-ready slide template that drops straight into the deck.
Try the exerciseWhat Is a Security Awareness Training Use Case?
A security awareness training use case is the specific operational program a security team is running, organized by purpose rather than by topic. Onboarding training assigns the foundational catalogue to new hires. Annual compliance training assigns a refreshed set of exercises to the entire workforce on a yearly cadence. Cyber-insurance readiness assigns the exercises insurers and brokers list as renewal prerequisites. Each use case has its own assignment template, audit evidence package, and rollout timeline.
Use cases differ from industries in scope. An industry program scopes by who the workforce is. A use case program scopes by what the security team is accomplishing. Most teams run several use cases at once: onboarding and annual compliance simultaneously, with periodic breach-response rehearsals and cyber-insurance readiness layered on top.
RansomLeak ships every use case as a configured assignment template against the same 100+ exercise catalogue. The platform supplies SCORM 1.2 and 2004 exports for any LMS, plus standalone cloud delivery with SSO, MFA, and audit-ready reporting. Pick a use case below to see the playbook, recommended exercise sequence, and audit-evidence outputs that match how that program is typically run.
How to choose a use case
Use cases are organized by what the security team is trying to accomplish, not by who the workforce is. The fastest way to choose is to identify the immediate forcing function: a hire wave, an audit window, an insurance renewal, a board ask after a near-miss. Each use case page lists the typical timeline, the exercise sequence, and the evidence package the platform produces — so the team running the rollout already has a working draft on day one.
Most security programs run two or three use cases concurrently. Employee onboarding runs continuously alongside annual compliance training. Cyber-insurance readiness runs ahead of every renewal. Breach-response rehearsals run quarterly. Each one is a different assignment template against the same 100+ exercise catalogue, so the platform investment compounds rather than fragments. The hub below ranks use cases by the urgency a typical security leader cites when they engage.
Cross-reference an industry page when the regulatory framework is non-trivial. Healthcare onboarding overlaps with HIPAA workforce training under 45 CFR § 164.308(a)(5). Financial services audit prep overlaps with the GLBA Safeguards Rule and 23 NYCRR Part 500. Manufacturing breach-response rehearsals overlap with NIS2 incident-reporting timelines. Each use case page links the relevant industry pillars so the rollout already accounts for the audit framework the workforce operates under.
Frequently Asked Questions
What security teams ask before picking a use case.
How are use cases different from industries?
Can I run multiple use cases at the same time?
What if my use case is not listed here?
How long does each use case take to roll out?
Do these use cases include LMS integration?
Not Sure Where to Start?
Book a 30-minute walkthrough. Tell us what you are running. We will recommend the use case template that fits.