Security Awareness Surveys: Cyber Awareness and Behaviour

Would you like to understand the impact of security awareness and behaviour on your cyber security? From knowledge and motivation to behaviour and culture, our Bright® Cyber Surveys can measure your security awareness and provide the best insights to develop the most effective cyber security plan.

An expert explains how security awareness can be measured within an organisation.
Two professionals analyse data during a security awareness baseline measurement to evaluate the level of knowledge within an organisation.

Measuring Security Awareness

Research shows that 85% of cyberattacks succeed due to human error. Without insight into your employees' knowledge, behaviour, and skills in information security, it is impossible to establish an effective security awareness program.

For this reason, we have developed the CyberSkills and CyberCulture Survey based on the COM-B model for behaviour change. These surveys are specially designed to provide a detailed picture of security knowledge, awareness, and culture within your organisation. This gives you insight into the human vulnerabilities in your organisation, enabling you to create a tailored training program that minimises human risks within your organisation.

Trusted by


Security Awareness Measurement with Behaav Cyber Surveys

Cyber Skills

The Cyber Skills Survey measures respondents' security awareness through a quiz. This component fits within the COM-B behaviour model under 'capability'. The quiz covers key security topics from an employee's perspective.

The Cyber Skills Survey measures security awareness across eight components: phishing, incident reporting, privacy and data protection, passwords & authentication, social media, malware, internet usage, and mobile devices.

Cyber Culture

The Cyber Culture Survey measures the other two elements of the COM-B behaviour model, namely 'opportunity' and 'motivation'. This answers the question of how much people are enabled by the organisation and their work environment to work safely and to what extent they genuinely want to do so.

The Cyber Culture Survey consists of seven components to measure respondents' security awareness: processes, leadership, people, communication, responsibility & ownership, attitudes & intentions, and habits & compliance.

Both surveys can be completed in 8 to 12 minutes. After completion, you will receive a detailed report with the average scores of the respondents for each component. Additional insights based on departments, for example, are also possible. This way, you can precisely identify which themes pose a risk to your organisation, providing a solid foundation for optimising your security awareness program.

Customer reviews cyber security awareness training

Rene Bosman IT Manager, VEBE

Behaav's trainings contribute to increased awareness among our employees on their influence in cybersecurity. The communication and cooperation with Behaav is very nice and the program is personalised to what suits our organisation.

Photo of Patrick de Haan, IT-manager at Condor Group.
Patrick de Haan IT Manager, Condor Group

Very satisfied with Behaav for our Security Awareness Trainings. Communication is smooth and direct, and the training sessions are excellently received within our organisation. Behaav ensures that our employees are well prepared for all security challenges.

L.V. CIO Large listed multinational
We chose Behaav as our partner because of the dedicated focus on awareness and behaviour. We experience the partnership with Behaav as very flexible and of a high standard. Behaav has the responsibility to manage the program for Security Awareness and Behaviour with our ongoing executive support.
Photo of Patrick Noordam, Information Architect and Security Officer at Rensa Family Company
Patrick Noordam Information Architect / Security Officer
Rensa Family Company
The interactive crisis simulation gave us insight into decision-making processes during crisis situations. Our team left with actionable ideas to improve our crisis approach.