KnowBe4 is a security awareness and compliance training and simulated social engineering product. It is used by organizations worldwide to strengthen their security culture and reduce human risk. The product includes a comprehensive suite of awareness and compliance training, real-time user coaching, AI-powered simulated social engineering, crowdsourced anti-phishing defense and an AI suite that enhances human risk management through personalized training and automation. With…
$0.95
per month (billed annually) per seat
Proofpoint Security Awareness Training
Score 10.0 out of 10
N/A
Proofpoint Security Awareness Training (formerly ThreatSim from Wombat Security) is a cloud-based training platform that simulates threat scenarios (e.g. phishing) and also provides assessment testing developed by Wombat Technologies, which was acquired by Proofpoint in March 2018.
KnowBe4 Security Awareness Training coming with much more content to cover if not most of the ways and tracks that hackers and Scammers that will might let the employees get them to do an action like clicking suspicious links or attachments which might lead to hacking the …
I can't speak for any of them, but all had been considered. Proofpoint came highly rated but we decided to go with KnowBe4 Security Awareness Training.
Is purely superior to any other solution tested over time. Language availability and materials being dubbed vs subtitled significantly increase the UEx.
Proofpoint has a more streamlined product that tries to do to many things where Knowbe4 is a more specialized tool focusing on security awareness training without all the other IT tools and data. It's like they say you can be a jack of all trades but a master at none. Knowbe4 …
KnowBe4's console is more vibrant, organized, and displays news on login. KnowBe4's training modules are more engaging and have a store front with easy filtering/search to find the right training for your business. Phishing simulations have many more options and templates to …
I had used KnowBe4 Security Awareness Training previously and therefore knew that it's intuitive, easy to use, quick to customize where I'm able to and works well for reporting. I did like Cofense's ability to customize training modules but ultimately went for KnowBe4 Security …
KnowBe4 Security Awareness Training has a better platform for SAT than Proofpoint SAT and the templates are great. I compared these in 2020-2021, around the time when it was called Wombat. One nice thing that Proofpoint's SAT had is that if you also had their email security …
We have been with knowBe4 before there were any competitors in this market space. KnowBe4's experience continues to outshine its competitors. The last time we looked at these competitors, their features were not close to what we had in our current product, BUT they were less …
The price for our number of users was significantly lower in KnowBe4 and better deals with a multiple-year deal. Support to evaluation versions was better in KnowBe4 and the ability to use the full product during the proof of concept.
I like KB4 more for the easy of use not only to me but the end user. What is the easiest way we can have arguably one of the most important pieces to IT security get trained and tested. From ease of logging in, to resetting their password, to knowledge
Because we have been so happy with KnowBe4, we have not evaluated any competitors for many years. Initially, the great pricing that KnowBe4 offered to us as a 501(c)(3) nonprofit was a big selling factor, but the product itself has turned our organization into a big fan of …
We tried Proofpoint because of a huge benefit in how to integrate the awareness training with antispam, in another hand, the content of KnowBe4 Security Awareness Training is much better, mainly for Diamond agreement. This Diamond level provided us with training with better …
I have used Wombat in the past. There was no action group that you could be used with wombat, but you are able to utilize KnowBe4 Security Awareness Training. In the event, a user fails on a phishing campaign the associate is automatically thrown into an action group that will …
The level of customer service provided by KnowBe4 to their consumers is well above that of any other vendor. Because of this, there has been no consideration past initial due diligence in switching providers for security training. They go above and beyond every day to ensure …
Assistant Vice President / Security Awareness Program Manager
Chose KnowBe4 Security Awareness Training
When we looked at other vendors, we felt like the platforms were relatively similar in that they would help us provide phishing exercises and education to our associates. What really set them apart was the great customer service we received from the sales team through each of …
KnowBe4 showed superior content and integration with our technology stack. Their overall platform is easily configurable and doesn't tie into an SEG as most of the other offerings do. Allowing us to be flexible with our use case and continue to train no matter our selection of …
The user interface is more modern and provides a little bit better reporting. The ability to risk rank and identify weak areas is easier to manage via KnowBe4.
Ninjio and Proofpoint seem to be a lot different. I feel like Ninjio keeps people's interest because their training is based on short animation videos that are released monthly and then they have questions to answer. I really wish these two companies would merge. I think they …
We chose Proofpoint (Wombat at the time) because of the better variety of offerings in their training assessments. KnowBe4 was much more expensive and did not provide us with the confidence that they could meet the same level of delivery as Wombat (Proofpoint) could. I …
We looked at KnowBe4 but found that it was not quite as comprehensive as Proofpoint. The biggest difference was the ability to send out threat simulation emails with Proofpoint. This is an invaluable tool to test the effectiveness of our security awareness training program. …
The "Managed Service" (a dedicated ProofPoint Account Rep c/w weekly status calls) significantly reduces the resource demand on the area within your company managing the program. The KnowBe4 Platform does all the same stuff (Training Modules, Reports, ThreatSim Tools), but you …
I have used both and can say they are comparable. KnowBe4 has all the content out there for the admin to add but Proofpoint only had a limited number of courses available per the contract. Seems like KnowBe4 has more content or allows more per bundle.
KnowBe4 is more focused on security awareness since it is it's main source of business whereas Proofpoint security awareness is just an adjunct to the proof-point suite of products. KnowBe4 has an advantage here since their main focus is on security awareness rather than other …
We felt Proofpoint product was easier to use and administer. Proofpoint also had better features like PhishAlarm button, VAP reports, TRAP etc.
Verified User
Analyst
Chose Proofpoint Security Awareness Training
I think that Proofpoint Security Awareness Training pricing is one of the main reasons that we went with them. We only have the lowest tier, and it does a pretty good job for what we pay. We are using Proofpoint for our email security solution, so we ended up saving some money …
All three products have the pros and cons. Since we use other Proofpoint products, TAP, TRAP, etc. the integration with PSAT is much better. The other products do not integrate with TRAP nearly as well as PSAT.
I think Wombat beats most of its competitors by default by simply being another piece of the Proofpoint security platform. Other phishing platforms do not have this additional piece, so you will end up paying for a phishing awareness software and also an email security platform …
At the time we selected Proofpoint (Wombat) they appeared to have the best solution. They have a simple to use interface and the phishing platform was quite impressive. However, over time I have found that their training catalog is not as large as it could be. KnowBe4 has …
We already used ProofPoint so we thought it would be a better fit. The other products may have looked better but pricing was good. Do not increase pricing.
KnowBe4 Security Awareness Training and Proofpoint Security Awareness are both security awareness training software designed to train and test users on defending against social engineering attacks such as phishing. Both software options are most popular with larger enterprises, likely because as staff sizes increase, it becomes more difficult to train staff without a dedicated tool.
Features
KnowBe4 Security Awareness Training and Proofpoint Security Awareness both provide essential security awareness features, but they also have some unique features that set them apart from each other.
KnowBe4 Security Awareness Training provides over 2,000 phishing templates, allowing businesses to safely test their staff’s vulnerability to social engineering attacks and report on the results. Social Engineering tests can also be automated using KnowBe4 Security Awareness Training’s artificial intelligence tools, which can push social engineering tests out through email, text, or voicemail.
Proofpoint Security Awareness provides detailed and customizable reporting tools that can be run after each phishing simulation campaign. Businesses can use Proofpoint Security Awareness reporting features to see where there are vulnerabilities in their organization. Proofpoint Security Awareness also provides a simple to use interface for creating phishing simulations and generating reports.
Limitations
KnowBe4 Security Awareness Training and Proofpoint Security Awareness both help businesses to defend their organization against social engineering attacks, but they also have some limitations that are important to consider.
KnowBe4 Security Awareness includes tools for testing users on social engineering attacks, but its reporting features are more limited than the detailed reports businesses can generate with Proofpoint Security Awareness. Additionally, while KnowBe4 provides a variety of email templates, many uses find they need some customizing to be presentable as social engineering tests.
Proofpoint Security Awareness does not include significant automation tools, so if your organization wants to run tests automatically, KnowBe4 Security Awareness may be a better choice. Additionally, while the interface for creating tests and reports is straightforward with Proofpoint Security Awareness, its interface for managing large amounts of users is less flexible. If your business makes frequent staffing changes, software with better user management may be preferred.
Pricing
Pricing for KnowBe4 Security Awareness Training is dependent on the number of users, as well as the feature needs of the organization. Pricing starts as low as $8.00 per user per year, but can reach as high as $29.50 per user per year.
Pricing for Proofpoint Security Awareness depends on the size of the business in question. Organizations can reach out to the vendor for a detailed quote.
Features
KnowBe4 Security Awareness Training
Proofpoint Security Awareness Training
Security
Comparison of Security features of Product A and Product B
KnowBe4 Security Awareness Training
9.0
332 Ratings
4% above category average
Proofpoint Security Awareness Training
9.0
1 Ratings
4% above category average
Single sign-on capability
9.3295 Ratings
9.01 Ratings
Role-based user permissions
8.6321 Ratings
9.01 Ratings
Security Awareness Training
Comparison of Security Awareness Training features of Product A and Product B
I don't have any frame of reference for comparison, but the training that I have used has proved impactful for my staff. Since starting KnowBe4 training, we've seen a great increase in the number of phishing attempts, but also a great increase in the number of attempts that have been recognized by staff, and we have thus not been the victim of phishing or other cyberattact vectors
Perfect for regular (monthly) training of staff versus a "one and done" annual assignment on Cyber Security. Allows for a greater number of topics to be covered and for creating a "culture" of security awareness among all Staff throughout the entire company. NOT a replacement for IT Security Certifications amongst your technical staff (CISSPs & GSLCs on staff are a must have). Your Proofpoint Account Rep does most of the heavy lifting, but the program still requires "care and feeding" (resources) within your organization - preparing monthly user lists for training assignments and preparing reports for leadership on participation & progress
The provided templates for phishing simulations are mainly available in English. There are also some templates available in our native language, but their number is small. We have seen other platforms offer way more phishing simulation templates in our language.
Although there is a really huge number of training videos available, some of them are outdated and no longer have much to offer. Some cleaning up could help in this direction.
Although there a some games / puzzle like trainings available, we have seen other platforms offer more and better ones (on the other platforms had they had almost no videos at all...). It would help significantly to also invest in enriching the provided puzzles / games.
We have seen other platforms offer games, where, for example, employees of the company can compete against each other while working together in groups to achieve a common goal (e.g., eliminate a fictional security threat that has "hit" the company. Plan the steps needed to be taken, take the steps one after another and have a chance to see the impact each action has. At the end the team that has suffered the least cost to end the threat is the one that wins. Just an example. The point is to make this challenging, using gamification and to make the employees part of the prevention force of the company against cybersecurity threats.
The lack of a user rating on "cyber risk" is proving to be an immense difficulty. As we are looking at how to better hold our employees accountable as well as provide increased learning opportunities for those who need it most, it is becoming cumbersome--especially given the fact this is starting to become the standard for Security Awareness companies. The lack of this is resulting in a manual process vs being able to automate and moderate, thus taking up time and resources, which are always at a scarcity. It can also be cumbersome to look across the tools to see how a particular user is doing, vs being able to view all of their data in one space.
If you are a marketer, the editors for the Phishing Templates and Teachable Moments are quite frustrating. They feel out of date and clunky, as well as not featuring an auto-save, so you could lose the templates you are building. At this point, I have actually started to work in other email creation editors and learning HTML, to better customize and then moving all of the code into the editor. It has thus far proven to be less of a headache. I also do not believe the average user is working on branding their program, creating consistency for easy of navigation, and including additional resources in their teachable moments in the way we currently are. However, as more social science backgrounds continue to enter security awareness, I believe this will move towards the norm.
Some of the reporting numbers for Simulated Phishing could be better. For example, telling me how many people acknowledged the teachable moment out of the full email campaign is less meaningful than knowing how many people acknowledged it, from those who actually triggered/were shown the teachable moment.
Between the ease of use, cost effectiveness, functionality and continued improvements Knowbe4 continues to make it would be pretty hard to find another competitive product that wraps it all up like KnowBe4 has. Not saying it couldn't happen, but haven't seen anything that competes at this point.
We have a good relationship with our vendor/Proofpoint, which I believe is needed to be successful in Security Awareness and using tools like this
The package/service as a whole is incredibly helpful
The integrations with Proofpoint's Trap is one of the most valuable things we could do. It turns your entire email user base into members of IT security, to be on the look out to report cyber attacks, and have them pulled out of everyone's email if the email is condemed/found malicious.
KnowBe4 Security Awareness Training is simple to use, simple to administer, effective, with quality content. It is easy to take the training and we have the reminders set so that the longer a user puts the training off, the more frequently they will receive reminder emails. Eventually they get emailed every day until they take the training. But with a simple click, they can get into the training content.
Overall, PSAT is integral to what we do. PSAT is a helpful tool to help us improve our employees ability to recognize, report, and respond to phishing. It works for us to use a longterm partner, who is incredibly helpful/supportive, and also bringing Proofpoint's greater cybersecurity & attack intelligence into PSAT. Honestly, we are pretty happy and would make the choice to go with PSAT again (we evaluated the major players in the space via Gartner's Magic Quadrant). The team behind the products are excellent and the product of itself is both intuitive and expansive. This combination allows us to reach our 10k+ employees who are located in over 20 countries
There have only been a handful of outages in the 2 years we have had the product. Even during those instances, parts of the system were still operational
Pages load quickly, filter/sort quickly, and don't slow down or freeze. Everything is smooth and very easy to use. There are a places in the UI where you can forget how to get there, but other than that everything is great. We have had no issues using any part of the website.
Tech prod support is great! I did have to ask for a new customer success rep, needed a more experienced person to match my 12 years of experience running Cybersec training programs. Would suggest that more matching of rep level of knowledge to client level knowledge would help.
Proofpoint support has always been above average. A lot of companies provide a customer service manager for your account but few have proved as connected as Proofpoint. The CSM was able to give us a good start with the product and checked in periodically. I found them always helpful with any questions and very knowledgeable about the platform.
confusing question. I inherited this application so I didnt get any formal training other than the person who was leaving. The CSM provided some later on when I asked in a zoom call
The implementation went really well and KnowBe4 was there the whole time on setup to make sure things were setup correctly. The only thing we had to figure out on our own was to script users automatically being added to security groups. So that when they sync to knowBe4 from AD they are placed into the same/correct groups.
KnowBe4 offered a significantly more favorable cost-benefit ratio compared to other solutions. Its seamless integration with our existing infrastructure—particularly Active Directory and email systems—was the most compatible with our operational and security requirements.
All three products have the pros and cons. Since we use other Proofpoint products, TAP, TRAP, etc. the integration with PSAT is much better. The other products do not integrate with TRAP nearly as well as PSAT.
The product scales greatly. As long as you upgrade the license to support the number of users you are needing, adding in those new users is easy. Also getting those users set up with trainings/campaigns is very easy as well
The team was great to work with and took their time to ensure that we knew what we were doing with the product and that it was set up to meet the specific needs of our organization. This wasn't just a cookie-cutter deployment, but rather they focused specifically on our needs.
With the implementation of KnowBe4 Security Awareness Training, we have reduced a lot of issues of social engineering attacks like Phishing attacks, Smishing attacks, Vishing attacks, and a lot more. After implementing the KnowBe4 Security Awareness Training, we have seen a significant decrease in the clicking on a phishing email. Now users are aware of phishing attacks and they know how to react to them.
With KnowBe4 Security Awareness Training, we got another tool Phish Alert Button that we have installed on the user's outlook and after providing training on these topics, now we are receiving a lot of spam report emails are users are protecting them from clicking and just reporting it to the IT team.
With the Phishing test, we are seeing the growth and analyzing how our users will react in the case of a real phishing attack, and with this, we are providing more training to them and going with them as per the test report. This whole process is making our company more stronger against any type pf social engineering attack.
After implementing KnowBe4 Security Awareness Training, we have seen a lot of improvements in the account compromise case in our company because users are not clicking on fake links now.
I don't have any tangible numbers to provide, but we definitely have an increase in the number of staff reporting suspicious emails and fewer people clicking on phishing emails.
The cost we are paying per employee (<$2 pp)is low enough that we can consider this a "benefit" we offer to our employees. The knowledge gained can also be applied to your personal life with similar threats.
