KnowBe4, a leading cybersecurity platform focused on human risk management, announced the release of its Program Maturity Assessment (PMA) on June 30, 2025. This free tool helps IT and cybersecurity leaders evaluate and improve their organization’s security culture by addressing human risk factors, a critical predictor of secure behavior.
KnowBe4’s PMA, a free tool, launched to assess and strengthen security culture.
Evaluates 10 dimensions, including leadership and employee behavior.
Provides a five-level maturity score and 40 Culture Maturity Indicators (CMIs).
Offers actionable recommendations and a strategic roadmap for improvement.
Optional consultation links to KnowBe4’s HRM+ platform for deeper insights.
Trusted by over 70,000 organizations globally for human risk management.
As cyber threats increasingly exploit human actions, organizations struggle to measure and enhance their security culture. “Security culture is one of the strongest predictors of secure behavior, yet few organizations have the tools to assess and manage it effectively,” states KnowBe4’s Security Culture: How-To Guide. Developed by security culture expert Perry Carpenter, the PMA provides a jargon-free, self-assessment framework focused on Human Risk Management (HRM). It translates complex cybersecurity concepts into practical, actionable steps suitable for organizations of all sizes.
The PMA evaluates security culture across ten critical dimensions, delivering:
Holistic Evaluation: Assesses leadership involvement, employee behavior, and business process integration.
Objective Scoring: Measures 40 Culture Maturity Indicators (CMIs) for clear, quantifiable results.
Gap Identification: Pinpoints weaknesses in employee mindset and executive communication.
Strategic Roadmap: Provides tailored recommendations to strengthen the human defense layer.
Actionable Steps: Guides organizations to build a resilient security culture.
Upon completion, users receive a personalized maturity classification on a five-level scale, visual feedback, and prioritized recommendations. A follow-up consultation is available to explore integration with KnowBe4’s HRM+ platform, which includes modules for awareness training, cloud email security, and AI-driven defense tools.
“Every meaningful program requires clarity: clarity of purpose and clarity of impact,” said Perry Carpenter, chief human risk management strategist at KnowBe4. “The PMA offers a clear, data-driven approach that helps leaders identify key areas for improvement, allocate resources more effectively, and build a stronger, more resilient security culture.” By focusing on the human element—employees whose decisions impact security—the PMA empowers organizations to transform their workforce into a robust defense layer.
Trusted by over 70,000 organizations, KnowBe4’s HRM+ platform integrates awareness training, real-time coaching, anti-phishing tools, and AI Defense Agents to fortify user behavior against evolving threats. The PMA complements these offerings by providing a baseline for organizations to measure progress and demonstrate value to leadership. Social media posts on X highlight enthusiasm for the tool’s ability to identify weaknesses in five minutes, offering visual benchmarks and actionable insights.
KnowBe4’s Program Maturity Assessment marks a significant step in addressing human-centric cybersecurity risks. By providing a free, accessible tool to measure and enhance security culture, KnowBe4 empowers organizations to build resilience and mitigate vulnerabilities effectively.
KnowBe4 empowers workforces to make smarter security decisions every day. Trusted by over 70,000 organisations worldwide, KnowBe4 helps to strengthen security culture and manage human risk. KnowBe4 offers a comprehensive AI-driven ‘best-of-suite’ platform for Human Risk Management, creating an adaptive defense layer that fortifies user behavior against the latest cybersecurity threats. The HRM+ platform includes modules for awareness & compliance training, cloud email security, real-time coaching, crowdsourced anti-phishing, AI Defense Agents, and more. As the only global security platform of its kind, KnowBe4 utilises personalised and relevant cybersecurity protection content, tools and techniques to mobilise workforces to transform from the largest attack surface to an organisation’s biggest asset.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.