Proofpoint Security Awareness Training vs. Sophos Phish Threat

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Proofpoint Security Awareness Training
Score 9.0 out of 10
N/A
Proofpoint Security Awareness Training (formerly ThreatSim from Wombat Security) is a cloud-based training platform that simulates threat scenarios (e.g. phishing) and also provides assessment testing developed by Wombat Technologies, which was acquired by Proofpoint in March 2018.N/A
Sophos Phish Threat
Score 7.7 out of 10
N/A
Sophos offers security awareness and phishing training and preparation testing via Sophos Phish Threat, the company's phishing attack simulator.N/A
Pricing
Proofpoint Security Awareness TrainingSophos Phish Threat
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Proofpoint Security Awareness TrainingSophos Phish Threat
Free Trial
YesNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
YesNo
Entry-level Setup FeeOptionalNo setup fee
Additional Details
More Pricing Information
Community Pulse
Proofpoint Security Awareness TrainingSophos Phish Threat
Top Pros
Top Cons
Features
Proofpoint Security Awareness TrainingSophos Phish Threat
Security
Comparison of Security features of Product A and Product B
Proofpoint Security Awareness Training
9.0
1 Ratings
7% above category average
Sophos Phish Threat
7.0
1 Ratings
18% below category average
Single sign-on capability9.01 Ratings7.01 Ratings
Role-based user permissions9.01 Ratings00 Ratings
Security Awareness Training
Comparison of Security Awareness Training features of Product A and Product B
Proofpoint Security Awareness Training
9.4
1 Ratings
13% above category average
Sophos Phish Threat
7.4
1 Ratings
11% below category average
Training Content Library10.01 Ratings7.01 Ratings
Multilingual Training Content9.01 Ratings00 Ratings
Training Gamification9.01 Ratings5.01 Ratings
Industry-Specific Security Training9.01 Ratings7.01 Ratings
Individualized Security Training Plans9.01 Ratings00 Ratings
Phishing Simulations10.01 Ratings9.01 Ratings
Security Reporting10.01 Ratings9.01 Ratings
Best Alternatives
Proofpoint Security Awareness TrainingSophos Phish Threat
Small Businesses
Barracuda Security Awareness Training
Barracuda Security Awareness Training
Score 6.7 out of 10
Barracuda Security Awareness Training
Barracuda Security Awareness Training
Score 6.7 out of 10
Medium-sized Companies
KnowBe4 Security Awareness Training
KnowBe4 Security Awareness Training
Score 9.1 out of 10
KnowBe4 Security Awareness Training
KnowBe4 Security Awareness Training
Score 9.1 out of 10
Enterprises
Hoxhunt
Hoxhunt
Score 9.3 out of 10
Hoxhunt
Hoxhunt
Score 9.3 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Proofpoint Security Awareness TrainingSophos Phish Threat
Likelihood to Recommend
9.0
(46 ratings)
9.0
(5 ratings)
Likelihood to Renew
7.3
(1 ratings)
-
(0 ratings)
Usability
8.6
(5 ratings)
9.0
(1 ratings)
Support Rating
8.3
(44 ratings)
8.1
(2 ratings)
User Testimonials
Proofpoint Security Awareness TrainingSophos Phish Threat
Likelihood to Recommend
Proofpoint
Perfect for regular (monthly) training of staff versus a "one and done" annual assignment on Cyber Security. Allows for a greater number of topics to be covered and for creating a "culture" of security awareness among all Staff throughout the entire company. NOT a replacement for IT Security Certifications amongst your technical staff (CISSPs & GSLCs on staff are a must have). Your Proofpoint Account Rep does most of the heavy lifting, but the program still requires "care and feeding" (resources) within your organization - preparing monthly user lists for training assignments and preparing reports for leadership on participation & progress
Read full review
Sophos
If you're looking for a tool to maximize digital productivity without hindering the effectiveness of your workforce, Sophos is a great tool. It quickly & safely manages the threat level across all of our digital channels to reduce the potential engagement with fishy characters or websites that might present vulnerabilities.
Read full review
Pros
Proofpoint
  • Proofpoint has a huge library of phishing emails to choose from. They add new examples every week.
  • The training modules are fun and interactive and keep the user engaged.
  • The posters, and downloadable materials are amazing and really give a great visual to support your security campaigns.
  • The product is easy to use, and Proofpoint Support Staff are always available to help with any issues you have.
Read full review
Sophos
  • Set up an easy-to-use low overhead system of training and protection.
  • Works through a single pane of glass when using other Sophos products.
Read full review
Cons
Proofpoint
  • The lack of a user rating on "cyber risk" is proving to be an immense difficulty. As we are looking at how to better hold our employees accountable as well as provide increased learning opportunities for those who need it most, it is becoming cumbersome--especially given the fact this is starting to become the standard for Security Awareness companies. The lack of this is resulting in a manual process vs being able to automate and moderate, thus taking up time and resources, which are always at a scarcity. It can also be cumbersome to look across the tools to see how a particular user is doing, vs being able to view all of their data in one space.
  • If you are a marketer, the editors for the Phishing Templates and Teachable Moments are quite frustrating. They feel out of date and clunky, as well as not featuring an auto-save, so you could lose the templates you are building. At this point, I have actually started to work in other email creation editors and learning HTML, to better customize and then moving all of the code into the editor. It has thus far proven to be less of a headache. I also do not believe the average user is working on branding their program, creating consistency for easy of navigation, and including additional resources in their teachable moments in the way we currently are. However, as more social science backgrounds continue to enter security awareness, I believe this will move towards the norm.
  • Some of the reporting numbers for Simulated Phishing could be better. For example, telling me how many people acknowledged the teachable moment out of the full email campaign is less meaningful than knowing how many people acknowledged it, from those who actually triggered/were shown the teachable moment.
Read full review
Sophos
  • It should be easier to follow up with a user when they haven't completed training.
  • More options for reporting would be nice.
  • Better choice of users as all emails have been imported (aliases, dist. list. etc) taking up licenses.
Read full review
Likelihood to Renew
Proofpoint
  • The product is great for what we use it for
  • We have a good relationship with our vendor/Proofpoint, which I believe is needed to be successful in Security Awareness and using tools like this
  • The package/service as a whole is incredibly helpful
  • The integrations with Proofpoint's Trap is one of the most valuable things we could do. It turns your entire email user base into members of IT security, to be on the look out to report cyber attacks, and have them pulled out of everyone's email if the email is condemed/found malicious.
Read full review
Sophos
No answers on this topic
Usability
Proofpoint
Overall, PSAT is integral to what we do. PSAT is a helpful tool to help us improve our employees ability to recognize, report, and respond to phishing. It works for us to use a longterm partner, who is incredibly helpful/supportive, and also bringing Proofpoint's greater cybersecurity & attack intelligence into PSAT. Honestly, we are pretty happy and would make the choice to go with PSAT again (we evaluated the major players in the space via Gartner's Magic Quadrant). The team behind the products are excellent and the product of itself is both intuitive and expansive. This combination allows us to reach our 10k+ employees who are located in over 20 countries
Read full review
Sophos
It is easy to use and setup. You can schedule the Phish email test to be
sent out in the future or right away. You can also send to all users in
your list as well as stagger so all users do not get the email at the
same time and tell each other there is a test going on
Read full review
Support Rating
Proofpoint
Proofpoint support has always been above average. A lot of companies provide a customer service manager for your account but few have proved as connected as Proofpoint. The CSM was able to give us a good start with the product and checked in periodically. I found them always helpful with any questions and very knowledgeable about the platform.
Read full review
Sophos
Support is solid but not spectacular. While I haven't used support for Phish Threat specifically, this is a general rating for Sophos' support across the board. It could be easier to find the FAQ or other information I need, but when I've needed to reach out to support they've been good to work with.
Read full review
Alternatives Considered
Proofpoint
All three products have the pros and cons. Since we use other Proofpoint products, TAP, TRAP, etc. the integration with PSAT is much better. The other products do not integrate with TRAP nearly as well as PSAT.
Read full review
Sophos
Read full review
Return on Investment
Proofpoint
  • I don't have any tangible numbers to provide, but we definitely have an increase in the number of staff reporting suspicious emails and fewer people clicking on phishing emails.
  • The cost we are paying per employee (<$2 pp)is low enough that we can consider this a "benefit" we offer to our employees. The knowledge gained can also be applied to your personal life with similar threats.
Read full review
Sophos
  • ROI seems to be there though I have no direct stats.
  • Positively impacts my web-browsing experience. As an Account Executive, it enables me to do my company research quickly without engaging with any bad actors.
  • It runs in the background so it never impedes my workflows.
Read full review
ScreenShots