Skip to content
Training & Awareness · Live Attack Demos

Awareness training for
Phishing & BEC

Workshops led by the same OSCP-certified team that runs the pen tests. Live attack demos, before/after phishing metrics, and HR-ready reports — not annual slideshows employees click through.

OSCP / CEH-certified trainers English & Arabic delivery Before/after measurable results

0h Quote Turnaround
0w Workshop Lead Time
0d Behaviour Tracking
0% Live, Not Slideware
Aligned With NIST NICE Framework ISO 27001 A.6.3 CIS Control 14 UAE IA V2 (HR-3) ENISA Awareness Guidance
Packages

Pick the package that fits your team

Three productised tiers, fixed AED pricing, fixed scope. Or build a custom programme — we'll scope it to your team size, sector, and compliance pressure.

Standard

Awareness Workshop

For 25–50 person teams needing baseline awareness — fast.

From AED 3,500 single session, fixed scope
  • 2-hour live workshop (in-person or virtual)
  • Up to 50 attendees, single session
  • Phishing, password, social-engineering modules
  • Live attack demo (1 scenario)
  • Pre/post-quiz with HR-friendly attendance report
  • English delivery
Discuss Standard
Custom

Tailored Programme

For 150+ users, regulated sectors, or annual retainers.

From AED 18,000 scoped per environment
  • Everything in Advanced
  • Full-day or multi-session workshops
  • Sector / role-specific tracks (dev, finance, exec)
  • Executive briefing + board-pack deliverable
  • Quarterly phishing simulations + trend report
  • Tabletop IR exercise add-on available
  • Annual retainer option · multi-language
Discuss Custom

Indicative AED pricing for typical engagements. Final quote depends on team size, language, delivery mode, and travel. Written quote within 24 hours of the scoping call.

Pricing — Four tiers

Pick your scope, lock the fee

From single-workshop sessions to annual programs with quarterly drills.

Starter

AED 6,000

Ideal for: Small UAE companies running their first awareness session.

  • One 2-hour workshop
  • Up to 15 staff
  • Live attack demos
  • Attendance certificate per attendee
  • Phishing simulation
  • Tabletop exercise

Designed for UAE SMEs under 30 employees. One-time engagement, no retest included.

Get a quote

Essentials

AED 12,000

Ideal for: Growing companies running annual training across one team.

  • One 2-hour workshop
  • Up to 30 staff
  • Live attack demos + Q&A
  • Tailored to your sector
  • Pre/post knowledge check
  • Phishing simulation
  • Quarterly drills
Get a quote

Enterprise

AED 40,000–55,000

Ideal for: Multi-site companies needing an annual program with quarterly drills.

  • Annual program (workshops, multiple cohorts)
  • Quarterly tabletop or phishing drill
  • Role-specific training (executives, IT, finance)
  • Multi-language delivery (EN/AR)
  • Annual board-readout report
  • Custom e-learning module development
  • On-site delivery outside UAE
Get a quote

Not sure which tier fits?

Book a 20-min scoping call

Year 2 — 2027 roadmap

Productising awareness into a recurring-revenue platform.

2027

Security Awareness E-Learning Platform

Our own self-serve LMS with per-seat annual licensing. Micro-lessons, phishing scores, compliance tracking. UAE-local content, Arabic support.

2027

Role-Specific Training Tracks

Targeted tracks for developers (secure coding), executives (board-level cyber), and finance teams (wire-fraud and social engineering).

Why this matters for UAE

Annual slideshows don't change behaviour. Demonstrations do.

Most UAE security awareness programmes are a once-a-year slideshow that employees click through without reading. Click rates stay high. Credentials still get phished. Wire fraud still lands.

Ours isn't that. We demonstrate live attack techniques in the workshop — Wi-Fi spoofing, phishing kit walkthroughs, credential harvesting — and pair training with phishing simulations to measure real behaviour change over 90 days. The offensive team delivers the training, because the people who know how attacks work are the ones who can explain why defence matters.

Clients pair workshops with our Phishing Simulation service to produce before/after click-rate reports that HR and compliance leaders can actually report to the board.

FAQ

Common questions

In-person or virtual? Where can you deliver?
Both. In-person across the UAE (Dubai, Abu Dhabi, Sharjah, Northern Emirates). Virtual sessions via Teams or Zoom for distributed teams. Hybrid is fine — main session in-person + remote feed. Travel outside the UAE quoted on request.
Can the training be delivered in Arabic?
Yes. Standard package is English by default; Advanced and Custom include Arabic delivery. Mixed-language teams get bilingual slides + an Arabic-speaking instructor co-delivering. Other languages (Hindi, Urdu, Tagalog, Russian) available for Custom programmes — just ask.
How do you actually measure that behaviour changed?
Three ways. (1) Pre/post quiz — knowledge baseline. (2) Phishing simulation campaigns before and after — measures real click-rate change, not what people *say* they learned. (3) 30/60/90-day follow-up phish runs — confirms the change holds. Advanced and Custom packages include this measurement loop; HR and compliance leads use the report directly in their board packs.
Is the workshop suitable for non-technical staff?
Yes — that's the design. Content is calibrated to the audience. Front-line workshops focus on what attackers do day-to-day (phishing emails, fake calls, password reuse). Custom tracks for technical staff or executives go deeper into BEC, wire-fraud red flags, and supply-chain risk. We confirm the audience profile during scoping.
Will this map to ISO 27001 / NESA / PDPL training requirements?
Yes. Advanced and Custom packages include an evidence pack mapped to ISO 27001 A.6.3, UAE IA V2 HR-3, ADHICS v2, and PDPL awareness clauses. Attendance registers, content outlines, and post-quiz scores are formatted for direct submission to your auditor. Recorded sessions can be made available for absentees to maintain coverage.
Can we schedule annual training as a retainer?
Yes — most clients on the Custom package convert to an annual retainer covering: 1 main workshop + 4 quarterly phishing simulations + 1 tabletop IR exercise + ad-hoc executive briefings as needed. Predictable fixed-fee, billed annually or quarterly in AED. Cheaper than rebooking each module separately, and far cheaper than the cost of a successful phish.

Tired of annual training that changes nothing?

Book a free 30-minute scoping call. Workshops can be scheduled within 2 weeks; tabletop exercises within 3. Written quote inside 48 hours.

Book a Free Scoping Call
Book a Free Scoping Call