Skip to main content
TrustRadius
Infosec IQ

Infosec IQ

Overview

What is Infosec IQ?

Infosec IQ security awareness and training aims to empower employees with the knowledge and skills to stay cybersecure at work and home. With over 2,000 awareness and training resources, Choose Your Own Adventure® Security Awareness Games and personalized learning experiences,…

Read more
Recent Reviews

InfoSec Use Case

8 out of 10
July 12, 2023
Incentivized
We use InfoSec to educate and evaluate our employees when it comes to handling phishing. We run monthly phishing campaigns with different …
Continue reading
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 10 features
  • Industry-Specific Security Training (51)
    9.3
    93%
  • Security Reporting (55)
    9.2
    92%
  • Training Content Library (56)
    8.9
    89%
  • Phishing Simulations (57)
    8.9
    89%

Reviewer Pros & Cons

View all pros & cons
Return to navigation

Pricing

View all pricing
N/A
Unavailable

What is Infosec IQ?

Infosec IQ security awareness and training aims to empower employees with the knowledge and skills to stay cybersecure at work and home. With over 2,000 awareness and training resources, Choose Your Own Adventure® Security Awareness Games and personalized learning experiences, the…

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

49 people also want pricing

Alternatives Pricing

What is KnowBe4 Security Awareness Training?

KnowBe4 is a security awareness training and simulated phishing platform used by more than 65,000 organizations around the globe. Founded by IT and data security specialist, Stu Sjouwerman, KnowBe4 helps organizations address the human element of security by raising awareness about ransomware, CEO…

What is Curricula?

Curricula, headquartered in Atlanta, helps organizations of all sizes to fix their cyber security awareness training programs by using storytelling. It is designed so that employees enjoy fun episodes that take them on adventures to learn how to actively defend themselves in real-world scenarios.…

Return to navigation

Features

Security

This component helps a company minimize the security risks by controlling access to the software and its data, and encouraging best practices among users.

8.6
Avg 8.3

Security Awareness Training

Common features of security awareness training products.

8.5
Avg 8.3
Return to navigation

Product Details

What is Infosec IQ?

Infosec IQ security awareness and training aims to empower employees with the knowledge and skills to stay cybersecure at work and home.


With over 2,000 awareness and training resources, Choose Your Own Adventure® Security Awareness Games and personalized learning experiences, the solution aims to present everything needed to prepare employees and strengthen the user's cybersecurity culture.


The platform can be customized and personalized to match an organization’s culture and employees’ learning styles.


With Infosec IQ, users can:
Personalize employee training with role-based modules in a variety of themes, styles and lengths to engage learners
Automate training cadence and delivery to keep lessons relevant, challenging and fun — and save time
Integrate with endpoint protection, LMS and SOC to streamline program management, reporting and attack response
Analyze employee risk scores, learning outcomes and reported phishing threats to anticipate — and remediate — cyberthreats
Improve programs with actionable dashboard data, helping the user fill compliance training gaps and educate high-risk employees

Infosec IQ Features

Security Awareness Training Features

  • Supported: Training Content Library
  • Supported: Multilingual Training Content
  • Supported: Training Gamification
  • Supported: Industry-Specific Security Training
  • Supported: Individualized Security Training Plans
  • Supported: Phishing Simulations
  • Supported: Security Reporting

Security Features

  • Supported: Role-based user permissions
  • Supported: Single sign-on capability

Additional Features

  • Supported: Security awareness training: Educate employees with pre-built training programs, microlearning, reinforcement tools and Choose Your Own Adventure® Security Awareness Games.
  • Supported: Phishing simulator: Choose from 1,000+ realistic phishing templates, simulate the most sophisticated attacks and prepare every employee for when a real attack strikes.
  • Supported: Reporting & assessments: Easily identify employee risk, document compliance, measure your cybersecurity culture and prove the effectiveness of your security awareness efforts.

Infosec IQ Screenshots

Screenshot of DashboardScreenshot of Content LibraryScreenshot of Phishing IndicatorsScreenshot of Learner Experience and Grades

Infosec IQ Videos

Infosec IQ Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationNo
Supported LanguagesArabic, Bosnian, Bulgarian, Chinese (Simplified), Chinese (Traditional), Czech, Danish, Dutch, English, English (Australian), English (British), Finnish, French, French-Canadian, German, Hebrew, Hindi, Hungarian, Indonesian, Italian, Japanese, Korean, Malay, Norwegian, Polish, Portuguese, Romanian, Russian, Slovak, Spanish, Spanish (Latin American), Swedish, Thai, Turkish, Vietnamese

Frequently Asked Questions

Reviewers rate Industry-Specific Security Training highest, with a score of 9.3.

The most common users of Infosec IQ are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(185)

Attribute Ratings

Reviews

(1-4 of 4)
Companies can't remove reviews or game the system. Here's why
Mehdi Gafsi, MCSE, MCSA, V | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Employee awareness is our first line of defense against malware and phishing. Having our users periodically go through phishing campaigns and trainings builds a strong wall against malicious activities
  • great phishing campaigns
  • complete video platform that touches all fields
  • Great AD integration
  • better admin dashboard
Infosec is great for any size company . from small medium to large enterprises
  • Ease of use for employees
  • Easy integration and sync with AD
Security Awareness Training (7)
84.28571428571429%
8.4
Training Content Library
90%
9.0
Multilingual Training Content
90%
9.0
Training Gamification
80%
8.0
Industry-Specific Security Training
70%
7.0
Individualized Security Training Plans
90%
9.0
Phishing Simulations
100%
10.0
Security Reporting
70%
7.0
Security (2)
90%
9.0
Role-based user permissions
90%
9.0
Single sign-on capability
90%
9.0
  • great user awareness after the first training
  • More emails reported by users as phishing or malicious
User friendly interface, ease of management for the admin side and simple integration of Infosec IQ stack up against other contenders that we evaluated
200
InfoSec IQ is used by all company users who have access to a computer.
About 95% of our workforce
1
Our Senior security analyst is the main user managing the system
  • Employee awarnss
  • Phishing simulation
  • User training
  • user onboarding
  • Elevate user's awareness
  • Increase user's attentiveness to emails, text messages, etc
  • Incorporate into Mobile devices
The tool is working great for us.
Implementing a new tool can take 3-6 months to eb fully functional and see full potential
No
  • Cloud Solutions
  • Ease of Use
The criteria's for us is the ese of use and cloud solutions will still be maintained
  • Implemented in-house
No
Change management was a small part of the implementation and was well-handled
  • AD integration
Depending on what kind of integration needed, it might take longer than expected
  • Online Training
preparing a presentation and a step by step was really easy
configuration is easy and straight forward
you need to know your environment (AD)
No - we have not done any customization to the interface
No - we have not done any custom code
Not really
Support is very attentive and responsive We only had to reach out once
We did not see the need for premium support it is not a mission critical solution for us
No
There was no instance as such
The solution is doing what it is supposed to do
It was easy to train our users on it
  • create learning campaigns
  • create phishing campaigns
  • initial AD integration to integrate with our systems
No
the same system is setup for all users
the only time we needed support, the team was very responsive
InfoSec system has been up 100% since we started. never had a latency issue
  • Active Directory
As long as you have all the parameters, it was easy to integrate
In our case our AD was on prem, so we had to use ADFS
  • No systems
No systems
  • Single Signon
No
Integration was seamless and it is working properly
No interruption
Reach out to support before you try anything to make sure all is good
onboarding team was responsive and available when needed
our CSM was available for monthly calls to review the solution
the length of the commitment
how many additional users before changes to our licenses model
Not really
No
  • better performance
  • stability
  • new features
No
No
Score 8 out of 10
Vetted Review
Verified User
It is used to help the organization meet the following requirements: - General Security Awareness Training (Phish, Whaling, Social Engineering, etc.) - HIPAA and PCI - Compliance and customized internal Training (Customized specific training for PCI compliance and Point of Sale Terminals.)
  • Training Modules
  • Groupings
  • Metrics
  • Reporting
  • Update a few modules to address ongoing or changing compliance requirements (PCI requirement 9 and point of sales security as an example)
[Infosec IQ has a] great introduction to several compliance requirements. Would enjoy seeing a bit more in the area of possible secure coding best practices or point of sales terminals.
  • Easy of access
  • Reminders to employees and managers
  • Reporting and metrics
Security Awareness Training (7)
60%
6.0
Training Content Library
70%
7.0
Multilingual Training Content
70%
7.0
Training Gamification
70%
7.0
Industry-Specific Security Training
70%
7.0
Individualized Security Training Plans
30%
3.0
Phishing Simulations
50%
5.0
Security Reporting
60%
6.0
Security (2)
70%
7.0
Role-based user permissions
70%
7.0
Single sign-on capability
70%
7.0
  • Positive impact with the users.
  • Metrics shows us where the gaps are, and the remedial training for some users.
  • Some of the interface for the administrator is not as easy as potentially possible.
Running very close, but simplicity and ease of use along with pricing won over the competition.
6000
The user base consists of a cross-section of multi-disciplinary members. (Accounting/Finance/HR/Medical Providers, etc.) All are geographically dispersed throughout the United States.
2
Technical abilities to understand networking for initial setup, and active directory schema to support importing users and being able to manage new and departing members, ability to schedule and launch campaigns, and manage reports.
  • Compliance Requirements
  • User Education
  • Testing of knowledge obtained
  • Metric on the security program evolution
  • Using Scorm files within another LMS
  • Recording independent training sessions
  • Personalized training sessions
  • Campaigns for select members based upon specialty.
We already have.
No
  • Price
  • Product Features
  • Product Usability
  • Product Reputation
The cost was the driving factor during the initial stages. Now in place, content refresh is more important to stay current.
I would not change anything.
  • Third-party professional services
  • Don't know
Prior my time in the role.
Change management was minimal
There was no change management in place at the time of installation.
  • Unknown as I was not in the role at the time.
No challenges
Fortunate to not having called support previously.
Yes - managing the product by one person at the time was not feasible.
No
I haven't had a need to call for support.
The product is fine with a wish for a content refresh to happen more often. A few end users have had challenges with some of the responses being considered "tricky".
  • Starting a campaign
  • Importing users
  • Creating custom training
  • Metric reporting could be enhanced
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We currently use INFOSEC IQ for staff training requirements and will be adding student support at some point soon. We have found our click rate has steadily gone down since using INFOSEC IQ.
We are also finding a higher percentage of staff reporting emails to us since starting this program (both real and simulated phishing emails).
  • There is a wide array of video styles to fit all kinds of training needs.
  • INFOSEC IQ are very good at working with us to get the most of their product within our needs.
  • Customizing or creating our own phishing templates is easy to do.
  • Support is top notch!
  • We can use the content off line with our SCORM for yearly training requirements
  • We have internal issues with certain wording (Training, Courses, and such). There are some landing pages where we cannot customize and change those words. We have found work arounds.
We use some of the videos from INFOSEC IQ for our staff's yearly training requirements. We also use videos on a monthly basis with our security SharePoint page for monthly news and updates. Currently, we utilize one of INFOSEC IQ's yearly plans to send out a monthly bulletin email and then do monthly phishing campaigns based on the topic of the month.
Security Awareness Training (8)
51.25%
5.1
Training Content Library
80%
8.0
Multilingual Training Content
N/A
N/A
Training Gamification
80%
8.0
Industry-Specific Security Training
80%
8.0
Individualized Security Training Plans
80%
8.0
Phishing Simulations
90%
9.0
Security Reporting
N/A
N/A
Integration with Security Tech Stack
N/A
N/A
Security (2)
N/A
N/A
Role-based user permissions
N/A
N/A
Single sign-on capability
N/A
N/A
  • Our phish rate has dropped drastically since using INFOSEC IQ.
  • The rate of staff reporting not only our simulated phishing emails, but real phishing or suspicious emails is increasing as well.
  • We are getting more conversation happening around cyber security.
Whenever I have a question or an issue, I send a support request through my company portal login, and support usually gets back to me within a very quick timeline. Amazing support!
There are a few customizations we would like to be able to do to some of the landing pages for our staff. We require specific wording around the concept of "training" so as to avoid issues with staff looking for time off to complete "training" and "courses"
We would have used services to originally configure our setup and that went very smoothly.
We are currently in our second 3-year subscription and the process, cost, and service are great.
3600
We currently have over 3,600 staff to who we send simulated phishing emails to as well as we utilize material from Infosec IQ to share information with our staff.
1
At the moment, just one staff member creates and monitors various campaigns.
  • Simulated phishing
  • On going security awareness
  • Yearly security training requirement in security awareness
  • We have used some content on our own Sharepoint (behind a login) page.
  • The SCORM service is good for our yearly staff training needs.
  • We are still working on implementing the reporting from staff to Infosec (we had two email systems to support in the past and did not want to do that at the time).
  • We are looking to involve teachers and their class of students to enhance awareness with our students.
We just renewed for another 3 years
Microsoft Sentinel (formerly Azure Sentinel), Microsoft Defender for Cloud Apps (formerly Microsoft Cloud App Security), Microsoft Azure Active Directory
No
  • Price
  • Product Features
  • Product Usability
Being an education organization cost is an important factor when we evaluate products. Infosec IQ met our needs at a cost we could handle.
We evaluated 4 different vendors when we first looked at this service 4 years ago. I still stand by the decision we made to go with Infosec IQ.
It has been a while since I evaluated the other products that I cannot recall all of the other ones (one was Knowb4). I do know for the most part all of them pretty much did the same overall thing, while some had features others did not. In the end, the price, support and satisfaction of the product demo made INFOSEC IQ our choice.
  • Implemented in-house
No
  • From what I can remember, our main issues have always been internal. Needing to get permission to run campaigns from various unions and employee groups. The setup of Infosec IQ itself went very well.
Support before, during, and after was and is fantastic!
I do not recall doing that so I do not think we did.
When I was first testing the report email feature with both Google and O365, they were amazing in helping me get things figured out.
  • Setting up the various campaigns are a snap
  • Creating or modifying email templates are fairly easy to do
  • Downloading various supporting posters and material
  • Customizing staff landing pages could use a bit more flexibility
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Infosec IQ is being used by our entire company in order to ensure all employees have a full understanding and awareness of information security, what the risks are, and how to mitigate them. We also use the platform to train our employees on privacy and GDPR, as we operate in both South Africa and the EU. As a health tech company, we also have HIPAA verification so use the HIPAA modules to train employees and contractors on what HIPAA is and the expectations of that in order to ensure our continued verification against HIPAA. Infosec IQ has made it really easy in one platform for me to be able to send out training and awareness courses and ensure our team is fully trained on cybersecurity, information security, and the regulations around the world that impact us.
  • Excellent diverse selection of content covering not only information and cyber security but also other requirements such as GDPR and HIPAA.
  • Really efficient implementation process and easy to set up and start using right away. The implementation team is phenomenal.
  • Excellent support team and customer service. I hear from my account manager every three months for a catch-up and guidance on what is new, and he checks in on how I am doing and whether I need help with anything. I am thoroughly impressed by the service and support the team offers.
  • I would love to see the ability to have multiple mandatory policies in the system so that if I send out an awareness campaign on a specific subject (e.g., acceptable use), I can then link to the AUP for my company and ensure users read that and confirm reading it within the Infosec IQ platform. Then be able to set up other mandatory policies linked to other awareness campaigns as well such without overwriting the existing policy and employee confirmation of reading the policy.
  • It would also be nice to have the mandatory policy and confirmation of reading the policy by a user after the video instead of before. The videos work great to explain to a user what they can expect to read in the policy and helps them understand the scope of the policy so, rather than force the user to review the policy, accept the conditions thereof and only then can they see the video, it would make more sense to me to have the mandatory policy after the video.
  • It would be awesome if Infosec IQ could include more privacy regulations in their training content. We have POPI in South Africa and are currently looking at moving into Australia and the U.S., so to have training content on other privacy regulations over and above GDPR would really help me train my users when we move into another country.
Infosec IQ has excellent content covering all elements of information and cyber security as well as many other regulations, which makes it a diverse platform and enables a company to cover all their awareness and training requirements with one product.

It is easy to set up and use and get users going with the awareness campaigns and easy to track who has and has not completed the training. It is an excellent product and very cost effective too.
  • It has helped us prove for various certifications that we run regular security awareness training and keep our employees up to date on security risks and how they can mitigate them.
  • It has helped me ensure that I have better control over my security awareness campaigns and has reduced the amount of time I previously spent setting up PowerPoint presentations and delivering them to everyone. Now I can set up a campaign with the right videos very quickly and send them out to employees to work through within a given time frame and track and ensure everyone has actually watched the awareness videos.
  • All the employees prefer the concise, well-constructed videos that cover all the elements of the selected topic better and more quickly so they no longer have to spend an hour listening to me drone on about security through a PowerPoint presentation every couple of months!
Both Mimecast and KnowBe4 were much more expensive and could not compete with Infosec IQ on cost offering. Mimecast was also very limited to only security awareness training and only allowed you to choose 12 videos to send out a year (one a month) to your users. Infosec IQ provides all their video content to you with no limitations, which is much better value for money, especially as I get all the GDPR and HIPAA modules and content in the solution as well.
15
Product support, development, implementation team, and operations.
1
Background in information security, cybersecurity, and privacy and also experience working with Infosec IQ platform and understanding of training awareness campaigns.
  • Privacy training and awareness
  • Information security awareness
  • HIPAA training, as we need to prove that all staff members understand HIPAA in order to retain our verification
  • Ensuring employees are aware of policies and accept them against the mandatory policy functionality of the system
  • Phishing simulation
  • Ensuring employees have read and signed off on having read company policies
  • Proved that too many people in the organisation fell for a phishing email!
  • HIPAA training content came standard with the platform content, which enabled us to have much better training for our staff than previously
  • Delivering more of our own training content through the system for other regulatory training requirements we have
  • Better onboarding training for when we have new employees starting
No
  • Price
  • Product Features
  • Product Usability
  • Prior Experience with the Product
I used Infosec IQ before at my previous employer and loved the simplicity and ease of use of the product as well as how much content was available as a standard part of the product. The diversity of the content from information and cybersecurity to privacy and other regulations like HIPAA was a major requirement for me to be able to have one product to deliver all this content to our employees.
I wouldn't change a thing. This is the second time I have selected Infosec IQ for the company I work for, as I love the product so much and am so impressed with the content, support, and customer service I receive from them. Infosec IQ will always be my first choice for my security and privacy awareness training solution.
  • Implemented in-house
No
Change management was a big part of the implementation and was well-handled
Initially, the company I work for didn't understand why information security awareness training was required or what it was about. By showing them the platform and allowing them to see the content, the short videos, and how campaigns are put together management was able to understand how it worked and why continuous awareness was more beneficial than one long session once a year.
  • Getting executive management to understand how awareness training worked
  • Convincing employees that one short video once a month was not going to take too much effort or time and interrupt their day
It is so very easy to set up and use and get going with, which makes the implementation process very quick and efficient.
The sales team and Infosec IQ are always efficient, kind, and a pleasure to work with. I am always very happy dealing with the sales team there.
Post-sale customer service is amazing and it is great to hear from my account manager every quarter. He gives me updates on the product and checks up on how things are going on my side.
Good price with scalable number of users as the business grows.
Return to navigation