.jpg)
KnowBe4, a leader in human risk management, is addressing this evolution with the launch of its latest innovation: the Custom SAPA (Security Awareness Proficiency Assessment) AI Agent. This new tool moves beyond traditional, standardized testing to deliver a security measurement experience that is uniquely tailored to an organization's internal environment.
KnowBe4 has launched a Custom SAPA AI Agent within its AIDA (Artificial Intelligence Defense Agents) suite to provide environment-aware security testing.
The agent moves away from generalized assessments by tailoring questions based on an organization’s specific security stack, internal policies, and workflows.
Key features include admin control over question curation, granular per-question analytics, and the ability to create data-backed training roadmaps.
The tool aims to eliminate guesswork for security leaders, providing precise data to justify investments, set remediation priorities, and communicate risk.
The Custom SAPA Agent is powered by over five years of data from more than 50,000 organizations and five million SAPA completions.
The new agent is available immediately to customers with an AIDA subscription.
For years, security teams have relied on standardized assessments to gauge user knowledge. While effective for establishing a baseline, these one-size-fits-all tests often fail to reflect the unique realities of a specific organization. KnowBe4’s Custom SAPA Agent, delivered within its AIDA suite, directly addresses this gap. It uses specific organizational information—such as the company's security stack and industry context—to curate questions that mirror how security actually operates within that environment.
“Our goal with the Custom SAPA Agent is to eliminate the guesswork security leaders face when trying to justify training and remediation efforts,” said Bryan Palma, CEO at KnowBe4. “Decisions are often made using generalized assessment data that doesn't reflect an organization's true internal reality. This lack of specific data creates obstacles for security teams, leading to friction when they need to secure investments, set remediation priorities, or communicate risk. We provide the precise data teams require to confidently articulate their security posture.”
The new agent transforms the assessment process into a precision diagnostic tool for security leaders. Its features are designed to provide deep, actionable insights that are directly relevant to the organization.
Unlike fixed, standardized tests, the Custom SAPA Agent generates questions based on an organization’s unique environment and security stack. This ensures that the assessment is relevant and immediately applicable to the workforce’s daily reality.
Administrators retain full visibility and control, with the ability to review and curate questions to ensure maximum relevance. Furthermore, the tool provides per-question response analytics, allowing admins to see exactly how learners engage with security concepts, revealing hidden trends and high-priority risk areas.
The power of the Custom SAPA Agent extends beyond measurement. Assessment outcomes are designed to directly inform targeted Security Awareness Training (SAT) campaigns. This ensures that follow-up training is not generic but is data-backed and specifically aligned to the organization's real-world risks.
“The Custom SAPA Agent transforms the traditional assessment from a general proficiency check into a diagnostic instrument designed to identify the knowledge gaps that matter most to an organization’s specific risk profile,” said Greg Kras, chief product officer at KnowBe4. “By aligning questions to the organization's real-world controls and policies, we are giving security leaders the opportunity to create training programs that address their high-priority risks.”
Backed by more than five years of real-world usage data from over 50,000 organizations and five million SAPA completions, the Custom SAPA Agent represents a significant step forward in adaptive, intelligent security measurement. It is available now to customers with an AIDA subscription.
About KnowBe4
KnowBe4 empowers workforces to make smarter security decisions every day. Trusted by more than 70,000 organizations worldwide, KnowBe4 builds security culture and helps teams manage both human and agent risk. The company delivers a comprehensive, agentic best-of-suite platform for Human Risk Management, creating an adaptive defense layer that reinforces secure behavior against evolving cybersecurity threats. The HRM+ platform includes awareness training, integrated cloud email security, real-time coaching, crowdsourced anti-phishing, AI Defense Agents, and more. As AI becomes increasingly embedded in business operations, KnowBe4 prepares the modern workforce by training both humans and AI agents to recognize and respond to security risks.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.