Help Center › Security-awareness training

Security-awareness training

The training LMS: courses and quizzes, verifiable certificates, assignments and due dates, the manager and learner views, reminders, and how completion and progress are tracked.

1 · The course library

Open the Training tab. Each course is a card showing its status, length in minutes, a summary, and the compliance frameworks it maps to. There are 10 courses:

Course	Topic
Spotting Phishing Emails	Recognizing and reporting phishing. (Also the default remedial course.)
Passwords & Multi-Factor Authentication	Strong passwords, password managers, MFA.
Business Email Compromise & Wire Fraud	Executive impersonation, payment-change fraud, verification.
Ransomware & Safe Computing	How ransomware spreads and how to avoid it.
Handling Sensitive Data (PII & PHI)	Classifying and protecting personal and health data.
Social Engineering & Pretexting	Manipulation tactics and pretext scenarios.
Working Securely from Anywhere	Remote-work and home-network security.
Physical Security & Clean Desk	Tailgating, badges, clean-desk practice.
HIPAA Privacy & Security Awareness	HIPAA basics for staff handling PHI.
Insider Risk & Removable Media	Insider threats and USB / removable-media hygiene.

A course card's status pill reads Not started, In progress, or Completed · NN%.

2 · Take a course

(Optional but recommended) Type Your name in the field at the top — it's printed on your certificates.
Click Start course on a card (or Review / retake if you've passed it before).
Step through the lessons with Next → (and Back to revisit). The last lesson's button reads Take the quiz →.
Answer each quiz question (single choice), then click Submit quiz.
Watchword auto-grades against the course's pass threshold. If you pass, your completion is recorded and a certificate is generated.
If you don't pass, click Review lessons to try again — retakes are unlimited and the questions reset.

Passing a course closes matching assignments. If you're "viewing as" a roster person (Learner view) and you pass a course they were assigned, that assignment is marked complete. If no one is selected, passing closes all open assignments for that course. See Assignments.

3 · Certificates

Every passed course earns a verifiable certificate with a unique verify code (e.g. WW-PHIS-AB12CD).

After passing, click View certificate — or click View certificate on the course card any time later.
The certificate shows the learner name, the course title, the score, the date, the mapped frameworks, and the verify code.
Click Print / save PDF to keep a copy (uses your browser's print dialog — choose "Save as PDF").

4 · Completion & progress tracking

The Training tab header has a progress meter: "N of M courses complete (X%)".
Completion is stored per course: score, pass/fail, completion date, and certificate ID.
All of this is saved in your browser and is per active client — switching clients in the MSP console swaps the training state.
Completion and progress feed the Program analytics, the auditor evidence pack, and the exports.

5 · Assignments & due dates

An assignment is a course assigned to a specific person with a due date. Assignments are created three ways:

Source	Course	Due window
Auto-remedial after a campaign (clickers/submitters)	Spotting Phishing Emails	14 days
Manager assigns a refresher (Manager view)	Spotting Phishing Emails	14 days
Org-wide baseline (Training due tab)	Any course you pick	30 days

Assignment creation is idempotent: the same person won't get a duplicate open assignment for the same course. An assignment's status is one of:

Status	Meaning
`open`	Assigned, due more than 3 days out.
`due-soon`	Due within 3 days.
`overdue`	Past its due date and not yet complete.
`complete`	The assigned course was passed.

6 · The Program tab views

The Program tab has five sub-tabs. Two of them are about analytics and risk (covered in Risk scoring); the rest are about running the training program.

Manager view

Open Program → Manager view.
Pick a manager from the dropdown (only people who actually have direct reports appear).
You'll see only that manager's direct reports, each with their Human Risk Score and open-assignment count.
Click Assign refresher on a report to assign Spotting Phishing Emails (14-day due). If they already have it open, you'll be told.

Learner view

Open Program → Learner view.
Use Viewing as to pick a roster person (or leave it on "everyone").
You'll see that person's assigned training with reason, due date, and status.
Click Start on an assignment to jump to that course in the Training tab. Passing it marks the assignment complete for the person you're viewing as.

Training due & reminders

Open Program → Training due.
To roll out baseline training, pick a course and click Assign to all staff (due in 30 days).
The Reminder queue summarizes Open, Due soon (≤3d), Overdue, and Completed counts, and lists everything overdue or due-soon.
Overdue items show a manager escalation target (the report's manager).

Reminder email delivery is deferred. The schedule, due-date tracking, and the escalation list are fully modeled, but sending the actual reminder emails rides the deferred watchword-send runner. See Sending safely.

Reports & exports

Open Program → Reports & exports. Each button downloads a file in your browser (nothing is uploaded):

Export	Contents
Completion report (CSV)	Per course: title, score, passed, completion date, cert ID, frameworks.
Campaign results (CSV)	Per campaign: template, category, channel, cohort, the count metrics, phish-prone %.
Human Risk Scores (CSV)	Per person: name, email, dept, score, band, clicked/reported flags.
Evidence object (JSON)	The canonical, PII-free Awareness & Training evidence payload. See Security & privacy.

The Auditor evidence pack (preview) on the same screen summarizes coverage and lists the satisfied control families (HIPAA §164.308(a)(5), NIST 800-171 3.2.1–3.2.3, SOC 2 CC2.2/CC2.3, PCI DSS 12.6, ISO 27001 A.6.3).

← Phishing campaigns Next: Risk scoring →