# Cyber Awareness

**Cyber Awareness Report** provides contextual reports via email directly to end users when a risk associated with their activity is triggered. Cyber Awareness Reports explain what occurred, why it occurred, and the appropriate next steps. This report strengthens security awareness by guiding users through personalised reports, helping them become more self-aware and improve their behaviour without relying solely on IT or security team follow-up.

With the Cyber Awareness Report, organisations can:

* Promote better awareness of data-handling practices
* Encourage responsible use of tools, including AI platforms
* Reduce repetitive IT involvement in minor policy events
* Support internal compliance and HR processes
* Roll out consistent policy messaging across the business

Cyber Awareness Reports are fully configurable, so organisations can customise the messaging, tone, and guidance to suit their policies and communication style.

#### Real-World Example

A Cyber Awareness Report says:

> Repeated access to websites classified as unsafe or non-organisational was detected over multiple days. These platforms, including DeepSeek, Yahoo Mail, WhatsApp Web, WeTransfer, and Telegram, are not approved for organisational use and may expose systems to risks such as data leakage or malware.
>
> Frequent and prolonged browsing sessions, ranging from a few minutes to over an hour, indicate a pattern of non-compliant browsing behaviour.
>
> This occurred due to the use of non-organisational websites and limited awareness of the associated security risks.
>
> **Actions required:**
>
> * Avoid accessing non-approved or unsafe websites on work devices
> * Follow organisational policies on approved tools and platforms
> * Limit browsing strictly to work-related activities
> * Do not share or enter sensitive information on external platforms
> * Report any accidental access to unsafe sites

**Self-Awareness**

After reading the report, a user thinks:

* “I didn’t realise these websites are considered unsafe in my organisation.”
* “I’ve been using these platforms frequently during work hours.”
* “If I enter sensitive information on these sites, it could be exposed.”

This helps the user recognise how routine browsing behaviour may introduce security and compliance risks.

**Self-Improvement**

The user takes concrete steps:

* Stops accessing non-organisational websites on work devices
* Uses only approved tools for work-related tasks
* Avoids entering organisational data into external platforms
* Becomes more mindful of browsing time and purpose
* Reviews organisational policies on safe internet use

**Outcome**

* Reduced exposure to unsafe or unapproved platforms
* Lower risk of data leakage and malware threats
* Improved compliance with organisational security policies
* The user develops more disciplined and security-aware browsing habits

## Configure Cyber Awareness Report

1. Navigate to ***INSIGHT > Cyber Awareness***.
2. Click **Configure Cyber Awareness Report**.<br>

   <figure><img src="/files/yGq8KBDVfDv75Xm1OQml" alt=""><figcaption></figcaption></figure>
3. In **General**:
   1. Enter the email subject.
   2. In **CC**, add valid email addresses for additional recipients, if needed. Separate multiple email addresses with commas.
   3. In **Email Start Date**, select the date and time when the report will be sent.
   4. In **Status**, select **Enabled** to enable the report schedule and start sending reports automatically.
   5. In **Send to**:
      1. **Send to admin**: Select **Send to admin** to send the Cyber Awareness Report of selected users to administrators.
      2. **Send to users**: Select **Send to users** to send the Cyber Awareness Report to individual users selected in the next step.
   6. In **Duration**, choose how often the report is sent:
      * **Daily:** The report is sent every day after the selected start date.

        *Example:* If the Email Start Date is 10 April at 9:00 AM, the report will be sent daily at 9:00 AM starting on 10 April.
      * **Weekly:** The report is sent once every week on the same day and time as the start date.

        *Example:* If the Email Start Date is Friday, 10 April, at 9:00 AM, the report will be sent every Friday at 9:00 AM.
      * **Monthly:** The report is sent once every month on the same date and time as the start date.

        *Example:* If the Email Start Date is set to 10 April at 9:00 AM, the report will be sent on the 10th of every month at 9:00 AM.<br>

        <figure><img src="/files/bqHMknqmzmY4IHxB0mt3" alt=""><figcaption></figcaption></figure>
   7. Click **Continue**.
4. In **Select Users**, select the users whose Cyber Awareness Reports you want to send. Selected users receive only their own report, while administrators receive the reports of all selected users.

   <figure><img src="/files/p5ItgXWP2fzGZZvBgBlc" alt=""><figcaption></figcaption></figure>
5. In **Select Risks**, select and configure the risks to include in the report. To configure a risk:
   1. Select a risk template from the list and click **Configure**.<br>

      <figure><img src="/files/64Z7lEc1oVeuZaHwOk22" alt=""><figcaption></figcaption></figure>
   2. In the text editor, add context and information to help recipients understand the risk.\
      ![](/files/zx4MW0jmSAoecwSf7kAC)
   3. In **Context Threshold**, define how many times the selected data type must appear in a document before it is considered an incident, and the Cyber Awareness Report is triggered.
   4. In **Incident Threshold**, define how many times an incident must occur before the Cyber Awareness Report is generated. If escalation is set to **3**, the Cyber Awareness Report is generated only after an incident matching the selected data type occurs **three times**. If it occurs once or twice, it is recorded, but the Cyber Awareness Report is not generated.\
      \
      \&#xNAN;*`Example: If the selected data type is Visa Card Global and the`` `**`Context Threshold`**` ``is set to 5, the document must contain at least five Visa card matches to be considered an incident. If the`` `**`Incident Threshold`**` ``is set to 3, the Cyber Awareness Report is generated after three such incidents occur.`*
   5. For risks associated with time-based activities, the **Duration Threshold** option is displayed in the configuration. Use this setting to define the minimum duration an activity must last before it is considered an incident.

      \
      \&#xNAN;*`Example: If the selected risk type is time spent on Generative AI websites and the Duration Threshold is set to 10 minutes or more, a Cyber Awareness Report is generated when a user browses Generative AI websites for 10 minutes or longer.`*
   6. Select the data types to monitor for this risk.
   7. Click **Save Configuration**, then click **Continue**.
6. In **Customise**, customise the appearance and content of the email report.

   1. In **Cover Image**, upload an image in PNG, JPG, or GIF format, up to 5 MB, to personalise the report.
   2. In **Custom Template**, add or edit the content that will appear in the email. This can include an introductory message, risk summaries, additional instructions, notes, and more.
   3. In **Custom Template Footer**, add or edit the footer content displayed at the bottom of the email report.
   4. In **Custom Template Privacy**, add or edit the privacy statement or disclaimer included in the email report.

   <figure><img src="/files/msOXNYkIgvgWzLIDnqwe" alt=""><figcaption></figcaption></figure>
7. After completing all steps, click **Create Report**. The report will be generated and sent based on the defined criteria and schedule.
8. You can also send a test email to a specified email address to preview how the report appears to recipients. To send a test email:
   1. In **Email to**, select or add the email address.
   2. Click **Send email**.\
      ![](/files/VDKoCYIVTuJy1WXRD5yI)

## View Cyber Awareness Report Details

You can view the Cyber Awareness Report email that was sent to users.

1. Navigate to ***INSIGHT > Cyber Awareness***.
2. Click **View Details** in the **ACTION** column.<br>

   <figure><img src="/files/QwnKMFk93xu9XxNgOBrX" alt=""><figcaption></figcaption></figure>
3. In the **ACTION** column, click **View Email**.<br>

   <figure><img src="/files/Bbq5hwGl0woeWMnZASEq" alt=""><figcaption></figcaption></figure>

## Edit Cyber Awareness Report

1. Navigate to ***INSIGHT > Cyber Awareness***.
2. Click **Edit Report** in the **ACTION** column.<br>

   <figure><img src="/files/r1tK27I02FApVKW9hX1R" alt=""><figcaption></figcaption></figure>
3. Update the necessary information and click **Update Report**.

## Delete Cyber Awareness Report

1. Navigate to ***INSIGHT > Cyber Awareness***.
2. Click the **Delete** icon in the **ACTION** column.<br>

   <figure><img src="/files/czDXiLhvvBJW9pw8CLDE" alt=""><figcaption></figcaption></figure>
3. Click **Yes, delete** in the confirmation box.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.guardware.com/insight/reporting/cyber-awareness.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.