What's New

Excited to introduce Google Workspace Learner Sync - a seamless integration that pulls learners into your platform directly from Google Workspace. Choose One-Way sync for simple imports or Two-Way sync for bidirectional updates, with support for syncing by Groups or Organisational Units (OUs).

This mirrors our popular Microsoft 365 integration, using secure Google authentication for enabling sync.

Why Partners Care

Automate learner management for your customers using Google Workspace, saving time on manual onboarding and keeping rosters always up-to-date. Perfect for education and training providers scaling their programs.

Quick Start Tips

• Set up via login as target client
• Navigate to Portal Settings
• Click on Sync Method

• Select Google Workspace
• Authorise with Google
• Select your syncing groups

Reach out to support for setup guidance or share this with your teams today.

Keep your learner list in step with Microsoft 365

If you use Office 365 with Two way sync, your learners are already added from the groups you choose. You can now control what happens when someone is no longer in those groups.

From Manage learners, open your active Office 365 sync (Office 365 Sync is Active). When sync type is Two Way, you’ll see Delete policy - Auto delete learners:

Enable auto delete (Yes): Learners are removed from Cyber Aware as soon as the next sync no longer finds them in your synced Office 365 group(s). Their training data is removed as part of that process.

No (default-style behaviour): Learners are marked for removal so you can review and remove them yourself-nothing is permanently deleted automatically.

This helps teams who want Cyber Aware to mirror their M365 group membership, and teams who prefer to confirm removals before data is deleted.

Direct Mail Injection (DMI) is a new delivery method for phishing simulations that sends emails directly into learner mailboxes using the Microsoft 365 Graph API or Google Workspace Gmail API.

Instead of relying on traditional SMTP delivery, which requires whitelisting sending IPs and domains to bypass spam filters, DMI injects simulation emails natively through your client's existing mail platform. The result is reliable, consistent delivery without the configuration overhead.

DMI is available for the two most widely used mail platforms:

Microsoft 365 Direct Delivery

Connects via the Microsoft Graph API using OAuth2 authentication. Once authorised, the platform can inject phishing simulation emails directly into Microsoft 365 mailboxes.

Google Workspace Direct Delivery

Connects via the Gmail API using Domain-Wide Delegation. A service account is configured in the client's Google Admin console, granting the platform permission to insert emails on behalf of users.

To setup DMI for your clients please refer to the DMI knowledge base guide: https://kb.cyberaware.com/docs/phishing-direct-mail-injection-setup

MSP partners told us the same thing over and over:

“Clients rarely complete gap assessments. They’re too technical, and when our team runs them, it goes straight over the client’s head.”

So we fixed it.

CyberAware now includes an AI assistance tool that rewrites gap assessments to match your client’s industry and technical level—and carries that same clarity through into branded, client-ready PDF reports.

The result? A powerful sales and engagement tool that anyone in the room can understand.

Start each engagement with a relevant baseline in minutes

From the Gap Assessment page, you can now:

1. Choose your framework: Select Essential Eight (E8), NIST, or ISO 27001.
2. Select industry & role: Pick your client’s industry and the role of the person completing the assessment (e.g. owner, CFO, IT manager).
3. Generate a tailored assessment with AI: CyberAware rewrites maturity questions using AI to match that industry and role— turning complex technical language into plain-English questions aligned to your chosen framework.

This means account managers, SDRs, and non-technical stakeholders can all work from the same, understandable baseline, without watering down the substance.

What’s in the new PDF reports

Once the assessment is complete, you can generate branded, client-ready PDF reports that stay in the same accessible language:

• Executive summary, non-technical stakeholders actually understand

• Maturity scoring and heatmaps that show where they stand at a glance

• Clear findings written in business-friendly language

• Prioritised remediation roadmap aligned to E8, NIST, or ISO 27001 (or SMB 1001 where applicable)

• Branding and clean visuals ready for client meetings and board packs

• One-click export to share and sign off faster

These reports don’t just look good—they tell the story in terms your client cares about.

Our gap assessments just got a serious upgrade.

You can now export branded, client-ready PDF reports for both Essential Eight (E8) and SMB 1001—complete with:

• Maturity scoring

• Visual heatmaps

• Clear findings

• A prioritised remediation roadmap

These reports are designed to make cyber conversations easier, faster, and more impactful for both you and your clients.

What’s inside each report

Each PDF is structured so anyone—from a CEO to a sysadmin—can understand what needs to happen next:

Executive summary for non-technical stakeholders: Clear, plain-language overview of cyber risk posture and what it means for the business.

Actionable tasks mapped to E8 and SMB 1001 controls: Every recommendation links back to specific controls, so you can show exactly why each action matters.

Co-branding and clean visuals for client meetings: Your logo, your brand, and professional layouts that look good on screen or printed.

One-click export for faster sharing & sign-off: Generate the report in seconds and send it directly to decision-makers.

How it works

• When a sub-client completes an SMB 1001 or Essential Eight Gap Assessment, the report is sent automatically to partner admins.

• Reports can also be downloaded on demand from the client’s dashboard for ongoing reinforcement as new controls are met and statuses are updated.

This means you can walk into any client meeting with a branded, up-to-date view of their security posture—and a clear plan to move them forward.

We’re excited to introduce a new feature now available to all partners, a white-label “Report Phishing” email address designed to streamline and enhance your phishing simulation campaigns.

We have introduced this feature to highlight positive behaviour in the reporting. We have also integrated positive behaviour into the learner risk score. Future releases will have the ability to send a successful phishing report email.

To set this up, you will need to configure your "Report Phishing" workflow/button to forward the reported email to report@mail.{your_platform_domain}

For example: report@mail.training.cyberxdynamics.com

This makes it easier than ever to reinforce positive reporting behaviours and report on positive behaviour.

Additional information can be found here: https://kb.cyberaware.com/docs/branded-report-phishing-email

Or questions can be sent to support@cyberaware.com

Partners can now create a Template Client a pre-configured setup that includes training schedules, phishing campaigns, phishing settings, and the business toolkit all in one place. This new feature streamlines the onboarding process by eliminating the need to manually configure each new client from scratch.

Once a Template Client is set up, partners will see a new toggle when upgrading any client to Lite or Pro. This allows them to easily copy the training schedule and/or phishing schedule from the template, saving time and ensuring consistency.

You can read more about this feature from our Knowledge Base: https://kb.cyberaware.com/docs/template-client

Cyber Aware is excited to announce the launch of two new branded landing pages, designed to align seamlessly with our partners’ branding and provide a smoother experience for end users.

Risk Landing Page

This page is ideal for direct traffic. Account Managers can now send users directly to /risk, where they will be taken straight to the Maturity Assessment screen, skipping the standard marketing content for a more streamlined experience.

Audit Landing Page

This landing page is tailored for users interested in Maturity Assessments while also introducing the Cyber Aware Business Toolkit. It’s especially useful for partners who wish to offer the Cyber Aware Business product as a paid service, even though it’s provided to partners at no cost.

These additions are part of our ongoing commitment to supporting your brand and helping you deliver value to your clients. For additional information, please read our branding landing page knowledge base article located here: https://kb.cyberaware.com/docs/branded-landing-pages

Partners can now enable branded "You've Been Phished" pages for phishing campaigns. This feature can be activated for individual campaigns, under the Advanced Settings dropdown, or as the default for the subclient via the Phishing > Settings page.

Partners still have the option to use a custom URL or enabling the new branded landing page

Once enabled when a leaner clicks on link within a phishing simulation they will be taken directly to the branded "You've Been Phished" which will contact the phishing email template and some key learning takeaways.

If you have any questions please don't hesitate to reach out to the support team at support@cyberaware.com

We are excited to announce enhancements to our Cyber Security Health Check, offering partners increased customization and comprehensive maturity level support.

This update empowers partners to better assess and enhance their cyber security posture in a manner that aligns with their specific organizational objectives.

Partners can also choose which framework categories to group health check questions by, including NIST, ASD Essential Eight, and SMB 1001, or continue utilizing our default Cyber Aware Framework.

You can learn more about creating question sets and maturity questions here: https://kb.cyberaware.com/docs/editing-health-check