Organisations relying solely on security awareness training (SAT) have visibility into only 12% of risky behaviour.

Mature HRM programmes have 5 times the visibility into risky behaviour compared to organisations relying solely on SAT.

Just 10% of employees are responsible for 73% of cyber risk. This also means that a small fraction of employees (specifically 10%) are responsible for 73% of risky behaviour.

Strategic Human Risk Management (HRM) programmes can reduce risk 60% faster than traditional methods.