{"id":149832,"date":"2026-06-01T08:00:13","date_gmt":"2026-06-01T12:00:13","guid":{"rendered":"https:\/\/trainingindustry.com\/?post_type=articles&#038;p=149832"},"modified":"2026-06-03T13:55:15","modified_gmt":"2026-06-03T17:55:15","slug":"why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently","status":"publish","type":"articles","link":"https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/","title":{"rendered":"Why Cybersecurity Awareness Training Fails, and What L&#038;D Leaders Should Do Differently"},"author":52,"featured_media":149835,"template":"","tags":[1015,3559,31477],"class_list":["post-149832","articles","type-articles","status-publish","has-post-thumbnail","hentry","tag-compliance-training","tag-cybersecurity-awareness","tag-role-based-learning","global_topic_tax-it-and-technical-training"],"acf":{"sponsored":false,"gated":false,"gated_content_type":"","file_attachment":null,"gated_content":"","form_instruction_header":"To access the full article, please fill out the form below:","pardot_html_embed":"","author_override":true,"author_name":"Chris Annetts ","author_image":"","author_bio":"Chris Annetts is the founder of <a href=\"http:\/\/www.optimisecyber.com\" target=\"_blank\" rel=\"noopener\">Optimise Cyber Solutions<\/a>, a UK-based cybersecurity awareness and training provider helping organizations strengthen their cyber resilience through practical, people-focused education. Chris brings significant experience from his time working with the National Cyber Security Centre, where he supported national cyber incident coordination and helped organizations understand, manage and respond to cyber threats.","excerpt":"Cybersecurity training is most effective when it builds real-world decision-making skills instead of simply tracking completion.","main_content":"After years of working with organizations on cybersecurity awareness, compliance and incident readiness, one pattern appears again and again: most employees are not careless, they are underprepared.\r\n\r\nThey are expected to recognize convincing phishing emails, challenge unusual supplier requests, protect sensitive information, follow reporting procedures and make good decisions under pressure. Yet too often, the only training they receive is a generic annual module that explains cyber risk in broad terms, asks them to answer a few quiz questions, and then records a completion score.\r\n\r\nThe problem is not that people do not care. The problem is that the learning is often disconnected from the reality of their roles. For learning and development (L&amp;D) leaders, this matters because <a href=\"https:\/\/trainingindustry.com\/articles\/strategy-alignment-and-planning\/the-good-bad-and-ugly-of-employee-training\/\" target=\"_blank\" rel=\"noopener\">employee training<\/a> on cybersecurity should not simply prove that employees have completed a course. It should help them behave differently when it matters.\r\n\r\nCybersecurity is no longer only a technical issue. It is a people, process, culture and learning issue. That places L&amp;D professionals in a much more important role than many organizations realize.\r\n<h2>Completion Does Not Mean Capability<\/h2>\r\nOne of the biggest mistakes organizations make is confusing training completion with workforce readiness. Completion data is useful, especially when organizations need evidence for audit, compliance, insurance or supply chain requirements. However, a completed module does not necessarily mean that an employee knows what to do during a real incident.\r\n\r\nIn practice, many employees can explain what phishing is but still feel unsure about what to do if they click a suspicious link. They may understand that supplier fraud exists but still feel uncomfortable challenging an urgent payment request from a senior colleague. They may know that data protection matters but still be unclear about what should happen if information is accidentally shared with the wrong person.\r\n\r\nFor L&amp;D leaders, this means asking questions that move cybersecurity training from a compliance activity to a capability-building exercise. Instead of only asking, \u201cHave people done the training?\u201d, organizations should ask, \u201cCan people recognize the risk?\u201d, \u201cDo they know what action to take?\u201d, \u201cDo they know who to contact?\u201d, and \u201cDo they feel confident reporting a mistake quickly?\u201d\r\n<h2>Why Annual Awareness Modules Often Fall Short<\/h2>\r\nAnnual cybersecurity awareness modules are common because they are easy to schedule, easy to track and easy to evidence. The challenge is that cyber risk does not operate on an annual cycle. Threats change, systems change, working practices change and employees move into new roles throughout the year.\r\n\r\nA single annual module also struggles to compete with the pressures of daily work. Employees make security-related decisions when they are busy, distracted or under pressure. They receive emails while managing deadlines. They handle data while serving customers. They respond to supplier requests while trying to keep work moving. They use systems remotely, collaborate across platforms and make judgement calls throughout the day.\r\n\r\nTraining that is delivered once a year may create awareness, but awareness alone is not enough.\r\n\r\nThe organizations that improve most are usually those that treat cybersecurity learning as a continuous program by using short, relevant and repeated interventions to reinforce the behaviors that matter.\r\n\r\nAn annual foundation module may still have a place, but it should be supported by practical reminders, role-based scenarios, manager briefings, phishing simulations, tabletop exercises and timely updates linked to emerging risks. The aim is to keep cybersecurity visible without making it feel repetitive or disconnected from real work.\r\n<h2>Effective Training Starts With Real Roles<\/h2>\r\nEffective cybersecurity training starts with a simple question: what does this person actually need to do differently in their role?\r\n\r\nA finance team does not only need general advice about phishing. They need to understand invoice fraud, payment diversion, supplier verification, business email compromise and the pressure tactics used to rush payments. Their training should include realistic examples of urgent requests, last-minute bank detail changes and emails that appear to come from senior leaders or trusted suppliers.\r\n\r\nCustomer-facing teams need a different focus. They may need to recognize suspicious requests for information, verify identities, handle personal data safely and avoid accidental disclosure. Remote workers may need practical guidance on home working, public Wi-Fi, device security, cloud storage, document sharing and reporting lost equipment.\r\n\r\nManagers need to understand how their behavior shapes culture. If a manager ignores reporting procedures, encourages shortcuts or treats security checks as an inconvenience, training loses credibility. Employees take their cues from what leaders and managers reward in practice, not only from what policies say.\r\n\r\nSenior leaders need a different type of training. They need to understand decision-making during a cyber incident, reputational impact, operational disruption, communication responsibilities and business continuity. In many incidents, the hardest decisions are not technical. They are commercial, operational and reputational.\r\n<h2>Training Should Be Designed Backwards<\/h2>\r\nCybersecurity training becomes more powerful when it is designed backwards from the incidents organizations actually experience.\r\n\r\nMany incidents do not begin with a dramatic technical failure. They begin with ordinary workplace moments. Someone receives an email that looks believable. Someone opens an attachment. Someone enters their password into a fake login page. Someone responds to a supplier request. Someone sends information to the wrong person. Someone delays reporting because they are embarrassed, unsure or afraid of being blamed.\r\n\r\nL&amp;D leaders can help by turning these moments into learning scenarios. Instead of teaching cybersecurity as a list of abstract risks, training should place employees in realistic situations and ask, \u201cWhat would you do next?\u201d\r\n\r\nFor example, a finance scenario might involve an employee receiving an urgent request to change supplier bank details before a payment deadline. The learning should explore the warning signs, the emotional pressure, the verification steps and the correct escalation route.\r\n\r\nA data protection scenario might involve an employee accidentally sending a document to the wrong recipient. Instead of focusing on blame, the training should explore what needs to happen next, who should be informed, what information should be recorded and why speed matters.\r\n\r\nA leadership scenario might involve a ransomware incident affecting core systems. The exercise should test who makes decisions, who communicates with staff, who contacts customers, how operations continue and what evidence is needed afterwards.\r\n\r\nThese examples are more memorable than generic advice because they reflect real decisions. They also help employees practice judgement in a safe environment before they face pressure in the real world.\r\n<h2>The Fear of Blame Can Make Incidents Worse<\/h2>\r\nOne of the most important lessons from incident response is that early reporting matters. The sooner an organization knows something may have gone wrong, the sooner it can investigate, contain and respond.\r\n\r\nHowever, many employees delay reporting because they are worried about getting into trouble. They may hope the issue is not serious. They may feel embarrassed. They may assume someone else will report it. They may not know whether the incident is important enough to raise.\r\n\r\nIf cybersecurity training is built around fear, blame and punishment, it can make people less likely to report mistakes. That increases risk.\r\n\r\nEmployees need to hear a clear and repeated message: if something feels wrong, report it early. They do not need to investigate everything themselves. They do not need to be certain that an incident has happened. Their role is to recognize uncertainty and escalate it quickly so the right people can assess the situation.\r\n\r\nManagers also need to be trained in how to respond. A dismissive, frustrated or critical response can discourage future reporting across an entire team. A constructive response reinforces the behavior the organization needs.\r\n\r\nA strong reporting culture is created through repeated learning, visible leadership support, simple reporting routes and positive reinforcement when people do the right thing.\r\n<h2>Policies Only Work When People Understand How To Use Them<\/h2>\r\nMany organizations have policies that look good on paper but are not understood in practice. They may have an incident response plan, an acceptable use policy, a data protection policy and a remote working policy, but employees may not know what those documents mean for their day-to-day role.\r\n\r\nA policy may state that suspicious activity should be reported, but employees may not know where to report it. It may state that sensitive information should be protected, but employees may not know how that applies when sharing files externally. It may state that payment changes should be verified, but finance staff may not have a clear process or authority to challenge a request.\r\n\r\nL&amp;D teams can play a vital role by translating policy into practical behavior. Training should not simply tell employees that policies exist. It should show them how to apply those policies in realistic situations.\r\n\r\nFor example, instead of saying, \u201cFollow the incident reporting policy,\u201d the training should explain what to report, who to contact, what details to include and what to do immediately afterwards. Instead of saying, \u201cProtect sensitive information,\u201d it should show examples of what sensitive information looks like in that organization and how it may be mishandled.\r\n\r\nThe more clearly training connects policy to action, the more useful it becomes.\r\n<h2>What L&amp;D Leaders Should Measure<\/h2>\r\nCompletion rates are still important, but they should not be the only measure of success. A high completion rate may show that training has been delivered, but it does not prove that behavior has changed.\r\n\r\nL&amp;D leaders should consider measuring confidence, understanding, reporting behavior and practical application. This might include pre- and post-training confidence scores, assessment results, scenario exercise outcomes, phishing simulation trends, incident reporting data, policy acknowledgement records and feedback from managers.\r\n\r\nA rise in reporting should not automatically be seen as a negative. In some organizations, increased reporting may show that employees are more aware, more confident and more willing to escalate concerns. This can be a sign of a healthier security culture.\r\n\r\nThe key is to look beyond whether people have completed training and towards whether the organization is becoming more prepared. Are employees reporting faster? Are teams following verification processes? Are managers reinforcing good behavior? Are leaders clearer on their role during an incident? Are lessons from exercises being turned into improvements?\r\n\r\nThese measures provide a more meaningful view of impact.\r\n<h2>From Awareness to Behavior Change<\/h2>\r\nCybersecurity awareness training works when it becomes part of how people think, decide and act at work.\r\n\r\nThe strongest programs do not rely on fear. They build confidence. They do not overwhelm employees with technical detail. They focus on the decisions people need to make. They do not treat cybersecurity as an annual event. They reinforce it through everyday behavior, management practice and organizational culture.\r\n\r\nFor L&amp;D professionals, this is an opportunity to move cybersecurity training beyond annual awareness and turn it into something far more valuable: practical workforce readiness.","full_width":false,"content_band":[{"acf_fc_layout":"social_callout","blockquote":"Cybersecurity training should not simply prove that employees have completed a course. It should help them behave differently when it matters."},{"acf_fc_layout":"content_area","wysiwyg":"[hubspot type=\"form\" portal=\"47185625\" id=\"31abc617-027a-47ea-a085-16e2fd6a2d32\" version=\"v4\"]"}],"tice_sponsors":"","custom_dfp_keywords":""},"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v25.8 (Yoast SEO v27.5) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Why Cybersecurity Training Must Focus on Behavior Change<\/title>\n<meta name=\"description\" content=\"Learn how role-based cybersecurity training helps employees build confidence, improve reporting and reduce organizational risk.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Why Cybersecurity Awareness Training Fails, and What L&amp;D Leaders Should Do Differently\" \/>\n<meta property=\"og:description\" content=\"Learn how role-based cybersecurity training helps employees build confidence, improve reporting and reduce organizational risk.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/\" \/>\n<meta property=\"og:site_name\" content=\"Training Industry\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/TrainingIndustry\/\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-03T17:55:15+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/trainingindustry.com\/content\/uploads\/2026\/05\/10.4.24-Learning-Tech-1552848391.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1920\" \/>\n\t<meta property=\"og:image:height\" content=\"1281\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@TrainingIndustr\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"9 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/trainingindustry.com\\\/articles\\\/it-and-technical-training\\\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\\\/\",\"url\":\"https:\\\/\\\/trainingindustry.com\\\/articles\\\/it-and-technical-training\\\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\\\/\",\"name\":\"Why Cybersecurity Training Must Focus on Behavior Change\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/trainingindustry.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/trainingindustry.com\\\/articles\\\/it-and-technical-training\\\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/trainingindustry.com\\\/articles\\\/it-and-technical-training\\\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/trainingindustry.com\\\/content\\\/uploads\\\/2026\\\/05\\\/10.4.24-Learning-Tech-1552848391.jpg\",\"datePublished\":\"2026-06-01T12:00:13+00:00\",\"dateModified\":\"2026-06-03T17:55:15+00:00\",\"description\":\"Learn how role-based cybersecurity training helps employees build confidence, improve reporting and reduce organizational risk.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/trainingindustry.com\\\/articles\\\/it-and-technical-training\\\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/trainingindustry.com\\\/articles\\\/it-and-technical-training\\\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/trainingindustry.com\\\/articles\\\/it-and-technical-training\\\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\\\/#primaryimage\",\"url\":\"https:\\\/\\\/trainingindustry.com\\\/content\\\/uploads\\\/2026\\\/05\\\/10.4.24-Learning-Tech-1552848391.jpg\",\"contentUrl\":\"https:\\\/\\\/trainingindustry.com\\\/content\\\/uploads\\\/2026\\\/05\\\/10.4.24-Learning-Tech-1552848391.jpg\",\"width\":1920,\"height\":1281,\"caption\":\"Woman unlocking something work.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/trainingindustry.com\\\/articles\\\/it-and-technical-training\\\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/trainingindustry.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Articles\",\"item\":\"https:\\\/\\\/trainingindustry.com\\\/articles\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Why Cybersecurity Awareness Training Fails, and What L&#038;D Leaders Should Do Differently\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/trainingindustry.com\\\/#website\",\"url\":\"https:\\\/\\\/trainingindustry.com\\\/\",\"name\":\"Training Industry\",\"description\":\"Articles, research and tools for the L&amp;D professional. Insights for managing the business of learning.\",\"publisher\":{\"@id\":\"https:\\\/\\\/trainingindustry.com\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/trainingindustry.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/trainingindustry.com\\\/#organization\",\"name\":\"Training Industry, Inc\",\"url\":\"https:\\\/\\\/trainingindustry.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/trainingindustry.com\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/trainingindustry.com\\\/content\\\/uploads\\\/2017\\\/10\\\/training_industry_logo_stacked_RGB1.png\",\"contentUrl\":\"https:\\\/\\\/trainingindustry.com\\\/content\\\/uploads\\\/2017\\\/10\\\/training_industry_logo_stacked_RGB1.png\",\"width\":371,\"height\":113,\"caption\":\"Training Industry, Inc\"},\"image\":{\"@id\":\"https:\\\/\\\/trainingindustry.com\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/TrainingIndustry\\\/\",\"https:\\\/\\\/x.com\\\/TrainingIndustr\",\"https:\\\/\\\/www.instagram.com\\\/trainingindustr\\\/\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/training-industry-inc-\",\"https:\\\/\\\/www.youtube.com\\\/user\\\/TrainingIndustry\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Why Cybersecurity Training Must Focus on Behavior Change","description":"Learn how role-based cybersecurity training helps employees build confidence, improve reporting and reduce organizational risk.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/","og_locale":"en_US","og_type":"article","og_title":"Why Cybersecurity Awareness Training Fails, and What L&D Leaders Should Do Differently","og_description":"Learn how role-based cybersecurity training helps employees build confidence, improve reporting and reduce organizational risk.","og_url":"https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/","og_site_name":"Training Industry","article_publisher":"https:\/\/www.facebook.com\/TrainingIndustry\/","article_modified_time":"2026-06-03T17:55:15+00:00","og_image":[{"width":1920,"height":1281,"url":"https:\/\/trainingindustry.com\/content\/uploads\/2026\/05\/10.4.24-Learning-Tech-1552848391.jpg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","twitter_site":"@TrainingIndustr","twitter_misc":{"Est. reading time":"9 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/","url":"https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/","name":"Why Cybersecurity Training Must Focus on Behavior Change","isPartOf":{"@id":"https:\/\/trainingindustry.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/#primaryimage"},"image":{"@id":"https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/#primaryimage"},"thumbnailUrl":"https:\/\/trainingindustry.com\/content\/uploads\/2026\/05\/10.4.24-Learning-Tech-1552848391.jpg","datePublished":"2026-06-01T12:00:13+00:00","dateModified":"2026-06-03T17:55:15+00:00","description":"Learn how role-based cybersecurity training helps employees build confidence, improve reporting and reduce organizational risk.","breadcrumb":{"@id":"https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/#primaryimage","url":"https:\/\/trainingindustry.com\/content\/uploads\/2026\/05\/10.4.24-Learning-Tech-1552848391.jpg","contentUrl":"https:\/\/trainingindustry.com\/content\/uploads\/2026\/05\/10.4.24-Learning-Tech-1552848391.jpg","width":1920,"height":1281,"caption":"Woman unlocking something work."},{"@type":"BreadcrumbList","@id":"https:\/\/trainingindustry.com\/articles\/it-and-technical-training\/why-cybersecurity-awareness-training-fails-and-what-ld-leaders-should-do-differently\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/trainingindustry.com\/"},{"@type":"ListItem","position":2,"name":"Articles","item":"https:\/\/trainingindustry.com\/articles\/"},{"@type":"ListItem","position":3,"name":"Why Cybersecurity Awareness Training Fails, and What L&#038;D Leaders Should Do Differently"}]},{"@type":"WebSite","@id":"https:\/\/trainingindustry.com\/#website","url":"https:\/\/trainingindustry.com\/","name":"Training Industry","description":"Articles, research and tools for the L&amp;D professional. Insights for managing the business of learning.","publisher":{"@id":"https:\/\/trainingindustry.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/trainingindustry.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/trainingindustry.com\/#organization","name":"Training Industry, Inc","url":"https:\/\/trainingindustry.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/trainingindustry.com\/#\/schema\/logo\/image\/","url":"https:\/\/trainingindustry.com\/content\/uploads\/2017\/10\/training_industry_logo_stacked_RGB1.png","contentUrl":"https:\/\/trainingindustry.com\/content\/uploads\/2017\/10\/training_industry_logo_stacked_RGB1.png","width":371,"height":113,"caption":"Training Industry, Inc"},"image":{"@id":"https:\/\/trainingindustry.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/TrainingIndustry\/","https:\/\/x.com\/TrainingIndustr","https:\/\/www.instagram.com\/trainingindustr\/","https:\/\/www.linkedin.com\/company\/training-industry-inc-","https:\/\/www.youtube.com\/user\/TrainingIndustry"]}]}},"_links":{"self":[{"href":"https:\/\/trainingindustry.com\/wp-json\/wp\/v2\/articles\/149832","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/trainingindustry.com\/wp-json\/wp\/v2\/articles"}],"about":[{"href":"https:\/\/trainingindustry.com\/wp-json\/wp\/v2\/types\/articles"}],"author":[{"embeddable":true,"href":"https:\/\/trainingindustry.com\/wp-json\/wp\/v2\/users\/52"}],"version-history":[{"count":4,"href":"https:\/\/trainingindustry.com\/wp-json\/wp\/v2\/articles\/149832\/revisions"}],"predecessor-version":[{"id":150606,"href":"https:\/\/trainingindustry.com\/wp-json\/wp\/v2\/articles\/149832\/revisions\/150606"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/trainingindustry.com\/wp-json\/wp\/v2\/media\/149835"}],"wp:attachment":[{"href":"https:\/\/trainingindustry.com\/wp-json\/wp\/v2\/media?parent=149832"}],"wp:term":[{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/trainingindustry.com\/wp-json\/wp\/v2\/tags?post=149832"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}