1 · the hidden risk
01
The hidden risk
The risk you can’t see is the one that hurts you most.
02
Introducing Privci
The world's first human vulnerability scanner
03
How the Scanner Works
Align, observe, analyse – over 30 days
04
Deep Behavioural Insight
From noise to clarity
05
Interventions That Work
Behaviour change, not box‑ticking
06
Measurable Value
Human vulnerability, understood — and reduced
07
Putting it all together
APIR · COM‑B · continuous flow
08
Thank You
Ready to transform your human risk?
M&S · ~£1bn brand impact
Social engineering call → credential reset → ransomware deployment.
~£1bn
over‑trusted authority
help‑desk pressure
credential reset norms
Co‑op · ~$200M disruption
Help‑desk impersonation → password reset → system access abuse.
~$200M
procedural trust
time‑pressure compliance
normalised shortcuts
Harrods · ~$10M remediation
Targeted social engineering → unauthorised access → rapid containment.
~$10M
implicit trust signals
assumed legitimacy
contextual deception
Human Vulnerability Scanner
Continuously measures real human risk — beyond knowledge, into behaviours and habits.
Dominant Archetype
Why risk manifests the way it does
Anxious Avoidant
92%
of users
Policy baseline
Your internal policies define “normal”. Upload them – the scanner aligns with your rules, then watches for deviations.
During the scan
Events & Use Cases
Challenges
Micro‑lessons
Deviation signals
Phishing sims ...
Vulnerability profile
HVI, TEI, OHRP · Top Concerns · Knowledge Gap · Tranining Preference · Behaviour Archetype
Trust
Fatigue
Pressure
Risk Norms
Habits
Compromise Routes
Trusted request received
Appears to come from an internal team
Department under pressure
Busy environment, urgency to respond
Routine action taken
Access granted as part of normal work
Compromise route detected
Privci identifies a risky behaviour pattern
Targeted intervention
Trust recalibrated, risk reduced
10 Intervention Agents
Each rooted in well‑researched behaviour‑change model, designed to address specific behaviours and habits.
Security Chronicles
49‑day personalised storyline that turns real behaviours into traits – and nudges change.
−31% HVI reduction
Measurable decrease in Human Vulnerability Index following targeted behavioural interventions.
42% fewer exposure paths
Reduction in realistic routes to compromise – meaning fewer ways for an M&S‑style attack to succeed.
2× faster risk response
Earlier detection of behavioural risk enables faster, targeted intervention before incidents occur.
45% cost reduction
In training – by focusing on what matters. Stop wasting budget on one‑size‑fits‑all programmes.
Audit‑ready behavioural evidence
Continuous, framework‑aligned insight supporting NIST, ISO 27001, CIS controls.
ASSESS
PERSONALISE
INTERVENE
REASSESS
Hidden Risk
habits · pressure · gaps · (like M&S)
Behavioural Scan
30‑day · baseline · observe
Vulnerabilities
HVI · archetypes
Compromise Routes
paths · exploit steps
Interventions
10 agents · micro actions
Measured Impact
−31% HVI · −42% exposure
Capability
Opportunity
Motivation
Thank you.
You've seen how Privci reveals and reduces human risk.
Ready to make it happen in your organisation?
Start your 30‑day scan →
Or email support@privci.com to discuss your environment.
Traditional security tools are blind to the human factors—trust, fatigue, pressure—that drive risky behaviour. Privci reveals these hidden risks before they become incidents.
Privci’s Human Vulnerability Scanner measures real human risk. Powered by APIR—Assess, Personalise, Intervene, Reassess—and grounded in proven behaviour‑change models, it reveals where trust is being over‑used, where fatigue is driving shortcuts, and which habits and norms are quietly forming.
The scanner aligns with your policies, then runs a 15–90 day observation period—no software to install, no disruption, just a lightweight browser agent that is fast to deploy, easy to scale, and non-intrusive.
The scan delivers a behavioural map: individual vulnerability profiles, archetype distributions, and realistic routes to compromise—showing exactly how an attacker would exploit your employees’ habits.
Ten specialised intervention agents deliver targeted, science‑backed help. Security Chronicles turns behaviour change into a 49‑day story. Topic of the Week keeps security relevant with timely micro‑lessons.
We measure real behaviour change: reduced Human Vulnerability Index (HVI), fewer routes to compromise, faster risk response, and up to 45% lower training costs. Audit‑ready evidence for NIST, ISO 27001, and more.
The APIR cycle drives continuous improvement. Behaviour‑change models (COM‑B) explains behaviour. Together they turn hidden risk into measurable resilience: scan → reveal vuln & routes → intervene → benefits → repeat.
Thank you for exploring Privci. We're here to help you understand and reduce human risk. Contact our team today to see the Human Vulnerability Scanner in action.
