Security Awareness Training: your staff as the first line of defence.
More than 80 percent of successful cyberattacks start with a human action: clicking a phishing link, entering credentials on a fake login page, or sending a wire transfer after a convincing impersonation email. Technical security tools cannot fully compensate for staff who do not know what to look for. North Star's security awareness training programme teaches your team to recognise and report threats, turning your people from a vulnerability into an asset.
What is included in security awareness training?
North Star's security awareness programme combines short online training modules with simulated phishing campaigns to measure real-world behaviour change. Training modules cover phishing recognition, password hygiene, multi-factor authentication, safe handling of sensitive files, and what to do when something looks suspicious. Simulated phishing sends realistic fake phishing emails to your staff without warning - the clicks are tracked, not punished, and are used to identify who needs additional training. Monthly reporting shows you click rates, training completion, and trend data over time. For businesses in BC and AB with compliance requirements, training records can be exported for audit purposes. The programme runs year-round because phishing campaigns change constantly.
What North Star delivers.
Short, engaging lessons that actually get completed.
Modules are 5-10 minutes long, mobile-friendly, and focused on practical scenarios. Not dry compliance videos. Completion rates are tracked per user.
Controlled fake phishing emails to test and train in real time.
We send realistic simulated phishing emails - fake package delivery notices, IT password reset requests, internal payment requests - and track who clicks. Clickers receive immediate in-the-moment training.
Monthly reports showing click rates and training progress.
You see which departments are most vulnerable, which users need extra attention, and whether the programme is driving improvement over time.
Scenarios specific to your industry and region.
Phishing campaigns targeting BC and AB businesses often use regional content - fake CRA notices, provincial government forms, or local courier names. Our simulations reflect that.
Helps enforce your acceptable use and password policies.
Training modules can be mapped to your specific IT policies, so staff are learning rules they are actually expected to follow, not generic best practices.
What buyers ask before they sign.
How much does security awareness training cost?
North Star prices security awareness training on a per-user per-year basis. Costs are typically $20 to $40 per user per year for the full platform including phishing simulations and reporting. Volume discounts apply for larger teams.
How often should we run phishing simulations?
North Star recommends monthly phishing simulations. Less frequent campaigns give staff time to forget their training, and attackers do not slow down in between.
What if an employee fails a phishing simulation?
Failure is the point - it is a learning moment, not a disciplinary one. Employees who click are shown immediate training about what they missed. Repeat failures are flagged confidentially for management review so targeted coaching can be arranged.
Can training records be used for compliance or cyber insurance?
Yes. Many cyber liability insurers offer premium reductions for documented security awareness programmes. Training completion records and phishing simulation results can be exported in formats suitable for insurance audits.
Is the training available in French?
The platform North Star uses supports multiple languages including French. If you have bilingual staff, please mention this during onboarding and we will configure the appropriate language settings.
Ready to make your team your strongest security layer?
Tell us about your environment and we will come back with a scoped proposal in two business days. No obligation, no pressure.
Start Your Free Assessment Back to Cybersecurity