How Booking Cybersecurity Training With Cyber Rebels Works
A clear, collaborative process designed to reduce uncertainty rather than add to it.
Step 1
Getting in Touch
It usually starts with a question.
Some organisations come to us with a clear idea of what they need. Others are less certain and want to sense-check whether training is the right next step. Both are common.
When you get in touch, we focus on answering what you’ve asked, clearly and without assumption, so you can decide what makes sense for your organisation.
There’s no obligation at this stage. It’s simply a conversation to understand your situation and whether training is likely to be useful.
Step 2
Understanding Your Environment
If training looks appropriate, we’ll invite you to complete our Cyber Security Awareness Questionnaire.
This isn’t an audit or a test. There are no right or wrong answers, and no expectation that everything is already in place. The questions are designed to help you describe how your organisation actually operates — where decisions move quickly, where pressure builds, and where actions are most likely to be taken without being fully checked.
Across different sectors, this step often brings clarity. What starts as a general concern about cyber risk becomes something more specific, grounded in how work is actually happening day to day.
Step 3
Shaping the Training
Using your responses, we develop a clear training scope.
The aim is to ensure the session reflects your environment and priorities, rather than relying on generic content. This includes what we recommend covering, what we won’t cover, how the training will be delivered, and what the session is designed to achieve.
In practice, this is where most organisations begin to see how their day-to-day workflows connect to the risks they’ve experienced or are concerned about.
At this stage, everything remains flexible. You can adjust the scope, refine it, or decide not to proceed.
Step 4
Confirming the Details
Once the scope is agreed, we send over the invoice along with our Training Services Agreement.
This sets out the practical details of the training — including delivery arrangements and responsibilities on both sides — so everything is clear before moving forward.
While approval and payment are handled on your side, we begin preparing the session based on what has been agreed, ensuring the training reflects your organisation from the outset.
Step 5
Preparing the Session
Preparation happens before delivery, not on the day.
We use the agreed scope to shape the session, selecting relevant examples, building realistic scenarios, and preparing discussion points that reflect how cyber risk is likely to appear in your day-to-day work.
Because we’ve seen how these situations show up across different organisations, the focus is always on making the session feel familiar and relevant rather than generic.
We also confirm practical arrangements in advance, whether that’s scheduling, platform access for online sessions, or room and equipment requirements for on-site delivery. Taking care of this early helps everything run smoothly.
Step 6
Delivery: Online or On-Site
Training is delivered live, either online or on-site.
For online sessions, you can use your own video conferencing platform or have us host. If you prefer your own system, you can invite us as a presenter. If we’re hosting, we’ll provide joining details and confirm access arrangements in advance.
For on-site sessions, we confirm the setup ahead of time — including room layout, Wi-Fi, and display equipment — so everything is ready to go.
This flexibility allows the training to fit around how your organisation already operates, rather than requiring you to adapt to a fixed format.
Step 7
The Training Experience
Sessions are practical, interactive, and grounded in real-world behaviour.
Rather than focusing on rules or tick-box exercises, the training explores how situations actually unfold — where something looks routine, feels legitimate, or arrives at the wrong moment — and how better decisions can be made in context.
The sessions are structured around the Cyber Rebels Five-Domain Model, focusing on behaviours that reduce real-world risk: recognising context, applying verification, maintaining secure habits, escalating early, and making proportionate decisions under pressure.
Across sessions, what consistently makes the difference is not more information, but clearer understanding of how those moments actually appear in practice.
Through discussion, realistic scenarios, and shared experience, employees build the confidence to recognise risk earlier and respond appropriately when something doesn’t feel quite right.
Step 8
After the Session
Following the training, we issue a certificate of completion for the organisation, with individual certificates available where required.
We also invite feedback from participants and organisers. This helps us understand what was most useful and where sessions can be refined, so the training continues to reflect how organisations actually work.
In the days and weeks that follow, you may start to notice small shifts in how people respond in everyday situations. A pause before acting, a quick check where there wouldn’t have been one before, or a decision to question something that would previously have been accepted.
These changes are often subtle, but they are what make a difference in practice.
A Process Designed to Feel Manageable
The process is deliberately structured to be calm, transparent, and collaborative from start to finish.
You remain in control of what’s delivered, how it’s delivered, and whether you proceed at each stage. The aim isn’t to rush decisions, but to make sure the training you receive is genuinely useful.
