AUSTIN, TX – 06/03/2026 – () – Addressing the swift advancement of AI-driven cyber threats and increasing oversight from boards regarding workforce risk, Living Security has launched a complete Human Risk Management (HRM) Purchasing Toolkit. This toolkit is intended to assist businesses in establishing and implementing human risk governance.
With generative AI facilitating more complex phishing operations, deepfake spoofs, and large-scale automated social engineering, the duration from an initial breach to complete lateral movement has shrunk significantly. Security executives note that scenarios previously taking weeks to develop can now intensify in mere hours, highlighting the critical requirement for ongoing monitoring of human-related risk elements.
According to the 2025 State of Human Cyber Risk Report by the Cyentia Institute, companies that depend solely on conventional security awareness training (SAT) can only see a small portion of workforce risk activity, roughly 12%. The study also points out a significant concentration of risky behavior, revealing that a mere 10% of users are responsible for 73% of risky actions within organizations.
These findings highlight a fundamental visibility blind spot in traditional training models centered on compliance. Instead of relying on intermittent awareness drives, businesses are progressively moving toward governance-based structures that constantly track, rank, and address behavioral risks throughout their staff.
Ashley Rose, CEO and Co-Founder of Living Security, observed that AI has revolutionized the threat landscape by industrializing social engineering methods. Rose stated that companies without real-time human risk intelligence are forced to operate in a reactive mode, whereas organized HRM programs bring quantifiable oversight and governance to the human aspect of cybersecurity.
The industry’s acceptance of Human Risk Management as a unique cybersecurity category has further sped up market growth. Living Security was named a Leader in The Forrester Wave
: Human Risk Management Solutions, Q3 2024, mirroring the enterprise need for telemetry-based behavioral analytics and automated intervention features.
The increasing incorporation of generative AI into everyday workflows has widened the workforce risk landscape. Companies must now consider not just human staff but also AI agents and automated systems functioning with delegated permissions. This shift extends exposure past simple phishing vulnerability to include identity abuse, data loss, and independent actions carried out for users.
Cybersecurity predictions for 2026, including insights from security advisor Matthew Rosenquist, stress that metrics based solely on awareness are inadequate in an AI-enhanced setting. Measuring and governing workforce risk are anticipated to become central components of enterprise security strategy in the coming year.
Living Security’s AI-native HRM platform synthesizes behavioral, identity, and threat data to dynamically evaluate risks and trigger context-specific interventions. In enterprise settings, clients have documented significant drops in high-risk user groups and reduced exposure times within the initial 90 days of deployment.
Uptake has quickened in regulated fields and innovation-heavy sectors, where proven workforce risk governance is seen as a critical mandate by boards of directors. This wider strategic change signifies a departure from monitoring training attendance toward quantifying and minimizing real-world exposure.
To assist companies managing this shift, Living Security has created the Human Risk Management Purchasing Toolkit. This organized resource is designed for CISOs, GRC executives, and security teams assessing HRM approaches and technology providers.
The toolkit comprises:
- A Strategic HRM Framework featuring maturity modeling and readiness evaluations
- An Executive Business Case Pack containing CFO-aligned ROI modeling instructions
- An RFP & Vendor Evaluation Kit to assist in organized platform comparisons
- A 90-Day Deployment Playbook detailing phased rollouts and tangible risk reduction targets
- A GDPR & Works Council Consultation Template (EU) to aid in privacy-compliant implementation
The company states that as regulators and boards increasingly require proof of workforce risk reduction, Human Risk Management is transforming into essential cybersecurity infrastructure instead of a secondary training activity.
The HRM Purchasing Toolkit can be accessed at:
About Living Security
Living Security is a worldwide supplier of Human Risk Management solutions, dedicated to aiding companies in measuring and lowering workforce cyber risk via continuous behavioral intelligence and governance-based security tactics. Named a Leader in The Forrester Wave: Human Risk Management Solutions, Q3 2024, the firm assists enterprises aiming to move from awareness-based reporting to tangible risk reduction in an environment of AI-accelerated threats.