CyBehave Athena

Your expert in behavioural cybersecurity, on demand.

Athena gives your security team an expert partner in human-centred security - grounded in CyBehave's research and frameworks, calibrated to where your programme actually is, and tailored by your own material. Ask it anything, plan your next steps, and design evidence-based interventions, without needing a behavioural scientist on staff.

Register interest → View pricing
Athena - AI expertise in behavioural cybersecurity

An expert that knows your programme and your policies - and answers in the language of behavioural science.

Capabilities

A specialist partner across the behaviour-change lifecycle.

Athena applies behavioural science to the practical work of a security awareness and culture function - diagnosing where a programme stands, recommending a defensible course of action, and supporting the design and evaluation of interventions. Every response is grounded in CyBehave's evidence base and calibrated to your organisation's context.

Expert advisory on demand

Authoritative guidance on security behaviour, culture and human risk, reasoned through established models - COM-B, the Behaviour Change Wheel, EAST and choice architecture - with the source behind each recommendation made transparent.

Programme maturity assessment

A structured diagnostic establishes where your programme stands across six dimensions, producing a versioned baseline that calibrates every subsequent recommendation and evidences progress over time.

Strategic development planning

Athena translates the maturity assessment into a staged development plan - clear priorities, a phased roadmap, recommended first interventions, and the measures that demonstrate impact.

Intervention design

Move from a defined behavioural problem to a concrete, evidence-based intervention ready to deploy, with the underlying behavioural rationale articulated for stakeholder assurance.

Context-aware to your organisation

Your policies, awareness material and programme documentation inform the guidance Athena provides, tailoring recommendations to your environment while remaining strictly reference material.

Continuously informed

Maintained against the latest academic and industry research in behavioural cybersecurity and human risk management, alongside CyBehave's growing corpus of whitepapers, insights, articles and books - so guidance reflects current evidence and practice rather than a fixed point in time.

Grounded, Not Guessing

Three rings of knowledge behind every answer.

Athena's answers are assembled from layers of knowledge, each with a different level of trust. CyBehave's research base - the latest academic and industry evidence plus our own growing corpus - defines how Athena thinks; your material informs what it says; your question shapes the response. The layers never blur - which is what keeps advice expert and your data safe.

Ring 1
Trusted · CyBehave

The expertise

CyBehave's behavioural-science operating instructions and frameworks, drawn from the latest academic and industry research in behavioural cybersecurity and human risk management, and from CyBehave's own growing corpus of whitepapers, insights, articles and books. This is Athena's identity, method and judgement - curated by CyBehave, the same for every client, and the only layer that sets how Athena behaves.

Ring 2
Your material

Your context

Your uploaded policies, awareness content and programme documents. Used as reference to tailor advice to your organisation - never as instructions. Your material informs answers; it can't change how Athena thinks.

Ring 3
Your question

The moment

Your live question and anything you attach to it. Combined with the maturity profile that calibrates the response, so the answer fits both what you asked and where your programme is today.

Your maturity profile sits alongside these rings as calibration context - so a team just starting out and a team optimising a mature programme get genuinely different advice to the same question.

Maturity Intake

Athena starts by understanding you.

Before giving advice, Athena asks a short set of structured questions to understand where your behavioural-security programme stands. It takes a few minutes, builds a profile you can revisit to track progress, and turns generic best practice into a plan that fits your reality.

🧮

Programme structure

Whether there is a defined, resourced programme rather than ad hoc activity.

👑

Leadership sponsorship

Executive ownership, budget, and visible support for human-centred security.

🛡

Champion network

The presence, coverage and activity of security champions across teams.

📈

Measurement

Whether real behaviour and culture are measured - not just training completion.

🎯

Intervention capability

The ability to design, run and iterate evidence-based behavioural interventions.

🤝

Culture & communication

How security is communicated, and how supportive the prevailing culture is.

From absent to optimising.

Each dimension is scored across five maturity levels. Athena meets you where you are and proposes realistic next steps - never level-4 sophistication for a level-1 team.

Level 0

Absent

Nothing meaningful in place yet.

Level 1

Initial

Ad hoc, reactive, compliance-driven.

Level 2

Developing

Some structure and intent, applied inconsistently.

Level 3

Established

Defined, resourced, and measured.

Level 4

Optimising

Data-led, continuously improving, embedded.

From Intake to Action

A plan, not just an answer.

Athena turns your maturity profile into a staged development plan for both the programme and the people running it - then calibrates every conversation that follows.

Step 1

Assess

Complete the structured maturity intake. A clear, honest read of where your programme stands today.

Step 2

Profile

Answers are scored into a versioned maturity profile across all six dimensions - revisit it any time to show progress.

Step 3

Plan

Athena generates priorities, a 90-day / 6-month / 12-month roadmap, first interventions, and the measures that prove it's working.

Step 4

Act & iterate

Every later conversation is calibrated to your maturity - so the advice keeps pace as your programme grows.

Interaction Types

Pick the kind of help you need.

Different questions need different depth. Choose an interaction type and Athena matches it to the right approach - a fast answer when you need one, deep reasoning when the stakes are higher.

Quick answer

A fast, focused response to a direct question. For when you just need to know.

Fast
🧠

Deep strategy

Considered, multi-step reasoning for intervention and programme design.

In depth
✏️

Draft communications

Awareness comms, nudges and messaging - written in your tone, ready to use.

Creative
📂

Analyse a document

Work through an uploaded document in detail - policy, report, or campaign material.

Focused

You manage multiple conversations and upload files for context whenever you need to. Athena keeps each conversation organised and grounded in the material you've shared.

Security & Privacy

Built for security teams - and held to their standard.

Athena is for the people whose job is protecting the organisation, so security and privacy are the priority, not an afterthought. Your data is isolated, your material is handled as untrusted by design, and the system is hardened against prompt-injection from the ground up.

Strict client separation

Each client's data is isolated at the data layer, so one organisation can never see another's. Separation is enforced by the database itself - not left to application code alone.

Untrusted by design

All client material - uploads, notes and questions - is treated as untrusted data, never as instructions. It's sanitised, screened, and sandboxed so it can inform answers without ever hijacking them.

Injection-hardened

Defence against prompt injection is built into how every answer is assembled - so attempts to manipulate Athena through a malicious document or message fail by construction.

Data is encrypted in transit and at rest, client content is kept out of logs, and you can export or delete your data on request. CyBehave operators who curate the shared knowledge base can never access your tenant's data.

For Business Teams

One shared workspace, calibrated for the whole team.

Business teams work in a shared workspace where the lead sets the direction once and everyone benefits. The lead establishes the business context, the security context and the security policy, then works with Athena to develop a strategic plan. That shared context and plan shape every answer Athena gives the rest of the team - so guidance is consistent, grounded in your organisation's reality, and pulling in the same direction.

Business context

The organisation, its sector, structure and priorities - so advice fits how your business actually operates, not a generic template.

Security context

Your threat landscape, risk appetite and the state of your behavioural-security programme - the backdrop every recommendation is reasoned against.

Security policy

Your defined policies and standards, used as reference so Athena's guidance stays aligned with what your organisation already expects.

The lead

Set the context, shape the strategy

The lead owns the shared workspace - defining the contexts and policy, then partnering with Athena to build a strategic plan for the programme as a whole.

  • Set the business context, security context and security policy
  • Work with Athena to develop the team's strategic plan
  • Share that context and plan across the whole team
  • Shape every team member's answers from a single source of truth
Each team member

Your own plan, tailored to your role

Every team member works with Athena against the shared context to develop a plan for their own role and goals - with coaching and expertise pitched to their level.

  • Answers grounded in the shared context and strategic plan
  • Build a personal plan for your role and your goals
  • Tailored coaching - whether you're new to behavioural security or an expert
  • Expertise that meets you where you are and grows with you

The shared context informs every conversation but never overrides how Athena thinks - the same strict separation between trusted expertise and your material applies across the whole team, with per-tenant isolation throughout.

Plans

For an individual, or your whole team.

Athena is priced as a flat platform fee plus usage, so you only pay for the model time you actually use. Choose the account type that fits - they're distinct, with no surprises.

Single user

For the individual practitioner

One expert in your corner. Ideal for a security awareness lead or consultant who wants behavioural-science backup on demand.

  • Full access to Athena and all interaction types
  • Maturity intake, profile and development plan
  • Upload your own context and manage conversations
  • Flat platform fee plus usage
Business

For the security team

Bring your whole team into one shared workspace - the lead sets the context and strategy, and every member gets answers and coaching tailored to their role.

  • Everything in Single user, for multiple people
  • Shared workspace with lead-set business and security context
  • Strategic plan that shapes every team member's answers
  • Per-member plans with coaching from beginner to expert
  • Add and manage users, with per-tenant isolation throughout

Athena complements CyBehave Heroes - run a full Security Champion programme in Heroes, and give your team an on-demand behavioural-security expert in Athena. Each works on its own; together they're stronger.

Put a behavioural-security expert in your team.

Register your interest and be first to know when Athena is available.

Register interest → Talk to us
Powered by Anthropic's Claude - applied behavioural-security expertise, built on a frontier AI model engineered for safety.