Landmines
Six questions that flip the KnowBe4 deal.
One per call. Don't stack. Let the silence work.
Q1
What behaviour signals does the platform see when a user makes a real decision outside a simulation?
Signal – exposes single-channel architecture
Q2
How often does the SmartRisk Agent update individual risk profiles – continuously, or in batch?
Cadence – exposes batch SmartRisk recalculation
Q3
When AIDA generates a phishing template, does it also modify risk profiles for users whose exposure changed?
Architecture – AIDA is content velocity, not risk modification
Q4
For NIS2 Article 21(2)(f), does the KnowBe4 export prove training delivered, or risk reduced?
Compliance – exposes participation-as-evidence gap
Q5
Does the platform read signals from identity, email, endpoint, and data – or only from KnowBe4's own systems?
Cross-system – exposes KnowBe4-internal signal universe
Q6
Can the platform show today which ten employees carry the highest risk, with a 90-day trajectory beyond simulation performance?
Defensibility – surfaces board readiness gap