Plug in your SOC staffing, incident profile and training costs to see how TryHackMe training can reduce risk, improve efficiency and deliver measurable financial impact.
This tool is designed for CISOs, SOC managers and security leaders who need to turn training conversations into business outcomes. It focuses on five core metrics:
Use it to justify training budgets, compare scenarios and prepare board-ready narratives around SOC performance.
| Tier | Untrained Risk Factor | Trained Risk Factor |
|---|---|---|
| L1 Analyst (Junior) | 15% | 5% |
| L2 Analyst (Intermediate) | 5% | 2% |
| L3 Analyst (Senior/Lead) | 1% | 0.5% |
Fill in these first – they drive the core ROI calculation. Everything else is optional.
Refine medium/low severity incidents and provide fallback alert volume if needed.
Capture fully loaded annual cost per analyst tier.
Estimate savings from reducing time to detect and respond to incidents.
Model wasted effort on false alerts and savings from better triage.
Estimate how training affects analyst turnover and replacement costs.
Account for major incident probability and large regulatory/brand impacts.