KnowBe4 is one of the most common platforms for proving that a security awareness program exists, that users actually complete training, and that phishing simulations are running with measurable results. For cyber insurance, that is the difference between a vague claim that "we do awareness training" and an evidence packet underwriters can trust. KnowBe4 is also a Cyber Catalyst designated solution, which may offer enhanced terms with participating insurers.
Carriers want to know whether the organization has a repeatable training program, whether users are completing assignments, and whether phishing simulations are running. In practice, the strongest KnowBe4 evidence packet contains a Training Activity or Training Status report, a Phishing Activity report, a completion or participation summary, and optional Phish-prone Percentage metrics showing improvement over time. Carriers generally expect completion rates above 90% and quarterly (not just annual) phishing simulations.
Before exporting, decide your claim: annual training for all users, quarterly phishing simulations, or both. KnowBe4's reporting surface is built from the Reports tab, with CSV and PDF export options. Key report names: Training Activity Reports, Phishing Activity Report, Phishing Activity by User Report, Failures by Phishing Template Report, and Group/User Report Cards.
Start in Reports and generate a Training Activity Report or Training Status report. This shows which users were assigned training and whether they completed it. Export as CSV or PDF for the most recent annual training campaign.
Pro tip: Aim for over 90% completion — carriers flag organizations with low completion rates as higher risk.
Suggested filename: knowbe4-training-status-renewal-2026-03.csv
Export the Phishing Activity Report from the phishing reporting area. This shows campaign outcomes including click rates, report rates, and per-user results. Many carriers now care more about testing than training — a program with simulations is stronger evidence than training alone.
Export the Phish-prone Percentage trend from Reports > Executive Reports. This metric shows the percentage of employees prone to click on phishing links and is useful for demonstrating program improvement over time. Use it as supporting evidence, not the lead artifact.
Pro tip: Phish-prone Percentage trending downward over multiple quarters tells a stronger story than a single data point.
Pair exports with one paragraph stating: how often training runs (annual, quarterly), how often phishing simulations run, who is included in scope (all employees, contractors, etc.), and any exceptions. This context keeps the evidence from looking like disconnected CSV files.
Most carriers expect above 90% completion across the organization. KnowBe4 data shows top-performing organizations achieve 97-99%.
Quarterly at minimum. Annual training alone is increasingly insufficient — carriers want to see a testing cadence alongside training.
Training Activity Reports for completion evidence, Phishing Activity Reports for simulation results, and Phish-prone Percentage for program improvement trends.
KnowBe4's metric showing the percentage of employees prone to click phishing links. It is distinct from phish-failure percentage and is useful for tracking program effectiveness over time.
Turn training and phishing evidence into a renewal-ready packet instead of screenshots and guesswork. Run a free readiness check.
Run Free Readiness Check →