SERVICE 04 · TRAINING
Strace delivers cybersecurity training that actually changes behavior — executive briefings, phishing readiness, role-based training, and small-business cyber programs that fit how your team actually works.
THE PROBLEM
Most security awareness training is checkbox compliance — a 20-minute video, a phishing quiz, a certificate filed away until next year. It doesn't change behavior because it wasn't designed to. Strace training is built by practitioners who respond to the breaches that happen when training fails, and it focuses on the specific behaviors that actually move the needle: how to recognize phishing in your inbox, how to verify wire transfer requests, how to handle suspicious activity, and how leadership should think about cyber risk.
WHAT WE OFFER
TRN-A
60-90 minute live briefings for executive and board audiences. Current threat landscape, real incident case studies, regulatory and legal trends, and what leadership specifically should be asking their security team. Delivered in-person or remote, customized to your industry.
TRN-B
Tailored phishing simulation campaigns paired with just-in-time training for users who click. Monthly or quarterly cadence, with executive reporting on click rates, reporting rates, and improvement over time.
TRN-C
Customized training programs for general staff, IT staff, finance teams, and executives. Topics include phishing recognition, secure remote work, identity and access hygiene, data handling, and incident reporting. Delivered as live workshops, recorded modules, or hybrid programs.
TRN-D
A productized 6-week program for small businesses without security staff: foundational training, a basic security policy template, a written incident response plan, and a Microsoft 365 hardening checklist. The minimum a small business needs to defend itself and pass cyber insurance underwriting.
WHO THIS IS FOR
Executive and board audiences needing current threat-landscape briefings · Small and mid-sized businesses without a security awareness program · Professional services firms with regulatory training obligations · Nonprofits and associations with limited IT and security staff · Defense contractors with CMMC training requirements · Companies that have just been breached and want to ensure it doesn't happen again
HOW WE WORK
01 · SCOPE
Understand your audience, your industry, your prior training history, and what behavior you actually want to change.
02 · DESIGN
Tailor the curriculum to your environment, your incidents, and your regulatory context.
03 · DELIVER
Live workshops, recorded modules, simulations, and executive briefings — whichever format fits your team.
04 · MEASURE
Track behavioral outcomes (phishing click rates, reporting rates, completion rates) and report against baseline.
WHAT'S INCLUDED — SMALL BUSINESS CYBER PROGRAM
ENGAGEMENT STRUCTURE
Executive briefings start at $3,500 and are scoped based on audience size, format, and customization. The Small Business Cybersecurity Program is a fixed-scope productized package. Phishing simulation and role-based training programs are scoped during the initial consultation based on audience size, cadence, and delivery format.
FAQ
READY WHEN YOU ARE