RansomLeak Security Awareness Training

RansomLeak Security Awareness Training integration: Automate security-awareness training across the employee lifecycle: new hires auto-enroll in onboarding, role and department changes reassign curriculum, and departures deactivate access. Reads directory fields only.

Automate security-awareness training across the employee lifecycle: new hires auto-enroll in onboarding, role and department changes reassign curriculum, and departures deactivate access. Reads directory fields only.

Built by
RansomLeak
Website
https://ransomleak.com/?utm_source=hibob&utm_medium=marketplace&utm_campaign=tech_partner
Resources
Guide link
Region
Global

Value statement

RansomLeak connects directly to Bob to make security-awareness training run itself across the entire employee lifecycle, with Bob as the single source of truth. When Bob records a new hire, RansomLeak auto-enrolls them in onboarding security training on day one; when Bob reflects a role, department, or manager change, it reassigns the matching curriculum; and when Bob marks an employee as a leaver, it deactivates their access — so admins never upload a CSV or maintain a separate training roster. The app reads directory fields only (name, work email, job title, department, manager, employment status — never SSN, compensation, or date of birth), stays current in real time via Bob’s employee lifecycle webhooks with an hourly reconciliation safety net, and deletes all synced data on disconnect. The result is continuous, audit-ready compliance training that scales with headcount and eliminates manual roster work for HR and security teams alike.

Functionality and how the integration works

RansomLeak connects to Bob via OAuth 2.0 and reads your employee directory (read-only). On an hourly sync and through real-time Bob webhooks, it provisions new hires and enrolls them in onboarding security-awareness training, reassigns role- and department-based training when employees change jobs, and deactivates access when an employee leaves. Only directory fields are used — name, work email, job title, department, manager, and employment status. RansomLeak never writes data back to Bob.

Short company description and USP

RansomLeak is immersive, interactive security awareness training for enterprise and mid-market workforces. Our catalogue of 100+ short, story-driven 3D exercises covers phishing, business email compromise, social engineering, deepfakes, AI threats, application security, and compliance (GDPR, CCPA/CPRA, HIPAA). The native HiBob integration keeps security training in step with your people: a new hire in Bob is enrolled in day-one security onboarding, a role or department change reassigns the right modules, and offboarding deactivates the user automatically. Bob stays the system of record for your workforce, and every lifecycle event triggers the training that should follow it.

SCHEDULE A DEMO

Key features

<p>- 100+ interactive 3D security awareness exercises: phishing, BEC, social engineering, deepfakes, AI threats, application security, and privacy/compliance (GDPR, CCPA/CPRA, HIPAA)</p><p>- Native HiBob integration: employee-lifecycle events drive enrollment over Bob's OAuth API (new-hire day-one onboarding, role-based reassignment, offboarding deactivation)</p><p>- Read-only directory sync from Bob, so the training roster stays current with no CSV uploads or manual user management</p><p>- Phishing, smishing, and vishing simulations across email (Microsoft 365 and Google Workspace), SMS, and voice</p><p>- Human risk scoring and risk-based automation to focus training where the risk is highest</p><p>- SCORM export for organizations that prefer to deliver training inside their own LMS</p>