Proposal / Prepared exclusively for your leadership team
Approve

One click. £4.35M. Every 39 seconds.

Remove
the
click.

91% of successful breaches begin with a human clicking something they shouldn't. We don't teach awareness. We build the instinct that prevents the click — across every one of your 150 employees, in 1 week. 5 cohorts delivered in 5 days.

Employees Immunised
150
Cohorts
5 × 30
Per Employee
£65
Vs. One Breach
0.23%

The Stakes

A single Tuesday afternoon click can undo a decade of security investment.

Firewalls hold. EDR holds. MFA holds. The human layer is the one your competitors are being breached through this week — and it's the one your budget hasn't yet fixed. This proposal fixes it, permanently, for less than the cost of a single incident response retainer.

91%

Of breaches begin with a phishing email

£4.35M

Average UK breach cost, 2024

277 days

Average time to identify and contain

How We Remove The Click

01 — 08 Framework

Eight pillars, delivered as immersive live sessions — not slide decks. Every module ends with a rehearsed behaviour, not a completion tick.

01

Threat Landscape

The exact attacker playbooks currently targeting organisations like yours — mapped to your industry and stack.

02

Cognitive Bias

Why smart, careful people click. Urgency, authority, curiosity — dismantled, then rehearsed until instinct replaces impulse.

03

Social Engineering

Live impersonation drills. Voice, email and Slack pretexts, so the first time your team sees one, it isn't the real one.

04

Technical Detection

URL, header and sandbox literacy — the 30-second checks that catch 95% of what makes it past the filter.

05

Incident Response

The two minutes after a click decide the blast radius. We drill those two minutes until they're muscle memory.

06

Reporting Culture

The single behavioural shift with the highest ROI: making it psychologically safe — and fast — to raise a hand.

07

Policy Alignment

Translating your security policy into the tiny decisions employees actually make on a Tuesday morning.

08

Continuous Hygiene

Post-training micro-tests, quarterly re-baselines, and a decay curve that stays flat — not the industry's 14-day cliff.

What You'll Be Able To Prove To The Board

Every KPI below is baselined, tracked weekly, and reported in your board-ready posture pack.

  • 95% reduction in credential-harvesting clicks
  • Report-rate from 4% to 65% within 90 days
  • Average detection time under 12 minutes per cohort
  • Zero-blame reporting embedded across every team
  • CPD-certified security literacy across 150 staff

See Your Number

Live

Move the sliders. This is the risk you're carrying today.

Employees who'd click today33
After the programme5
Annualised value protected£382,500
Return on £9,97538.3×

A framing exercise

Two decisions. One page. One of them is already being made.

Option A — Approve this week

£9,975

  • · 150 employees immunised in 1 week (5 cohorts × 5 days)
  • · Board-ready KPI pack
  • · CPD certification org-wide
  • · 85% reduction guarantee

Option B — Defer 12 months

£4,350,000 (expected)

  • · 33 statistically-expected clickers unaddressed
  • · 277-day average detection window
  • · Regulatory, reputational, insurance impact
  • · Post-breach training now mandatory anyway

You are already choosing. Not signing this proposal is choosing Option B.

Investment

£65 per employee. Less than one hour of average UK enterprise IT support. No add-ons, no per-seat surcharges, no renewal traps.

Total, All-In

£9,975

£1,995 per cohort × 5 groups · £65 per person

Includes simulations, live sessions, red-team debrief, CPD certification, 90-day follow-up tests, and posture report.

Rollout, Sequenced By Risk

Executives first — because that's who the attackers target first.

D1Executive & ManagementHighest value target30 staff
D2Finance & OperationsWire-fraud exposure30 staff
D3Engineering & Technical OpsCredential & repo risk30 staff
D4Customer Success & SalesExternal inbox volume30 staff
D5General Support & HRPII & payroll vectors30 staff

Programme duration: 1 week · 5 cohorts delivered across 5 consecutive days · Kickoff within 14 days of approval

Reference / Peer CISO

"The single most effective behavioural change we've implemented in five years. Click-rate dropped 89% by week six. The board asked why we hadn't done it sooner."

Sarah Jenkins

CISO, Vector Global Systems · 2,400 employees

89%

Click reduction

6 wks

Time to effect

The Questions You're Already Asking

6

Baseline click-rates in untrained UK enterprises sit between 18–28%. On a 150-person org, that's a statistical certainty of a successful phishing event inside 12 months. The £9,975 investment is 0.23% of the average UK breach cost. The question isn't whether you can afford this — it's whether you can afford the alternative.

The one decision on this page

Approve today. Baseline testing starts Monday.

Two signatures. One kickoff call. Every day of delay is a day your team runs on today's click-rate. Cohort Day 1 is held for approvals received this quarter — after that, next available intake is 11 weeks out.

Approve & Lock Cohort Day 1

Or reply to this proposal with a single word: Confirmed.

Pricing held 14 daysAll figures excl. VATCPD-certified · 85% reduction guarantee