1. Purpose of this Guide
This artefact shows your company doesn’t just talk about training but actually tracks who has completed it. Cyber Essentials requires this because awareness training isn’t a one-off quest — it’s a routine drill. Evidence proves your staff sharpen their cyber skills regularly, not just once upon a time.
2. What You Will Submit
You will need:
-
A screenshot or report showing:
-
List of users enrolled.
-
Training completion status (Completed, In-progress, Not started).
-
Completion dates or timestamps.
-
Overall training coverage (e.g., % of staff trained).
-
3. How to Collect / Obtain / Generate This Evidence
For StrongKeep Customers:
-
Log into the StrongKeep Dashboard → Training.
-
Select the latest training campaign (e.g., phishing awareness, password hygiene).
-
Screenshot the completion list or summary graph.
Alternative (non-StrongKeep setups):
-
Google Classroom / Microsoft Teams / Moodle: Export or screenshot training completion reports.
-
HR / LMS platforms (Workday, BambooHR, SAP SuccessFactors): Download or screenshot compliance training completion status.
4. Evidence Format
-
Accepted file types: PNG, JPG, PDF.
-
Suggested naming format:
YourCompanyName_TrainingCompletion_YYYY-MM-DD.png
Example:AcmeCorp_TrainingCompletion_2025-07-01.png
5. What “Good” Looks Like
-
Screenshot shows multiple users with clear status indicators (Completed/In-progress).
-
Includes dates for completions.
-
Overall coverage easily visible (e.g., percentage trained).
-
Taken from a credible platform (StrongKeep dashboard, LMS, HR tool).
Why it matters: auditors want to see proof that awareness training is ongoing and tracked, not just a checkbox exercise.
6. Tips
-
Redact personal details (email addresses, staff IDs) before uploading.
-
Keep records from multiple cycles (e.g., last year and this year) — it proves consistency.
-
Pair this evidence with your Cybersecurity Awareness Training Guide artefact for maximum impact.