KnowBe4 you buy whether it's a good investment!
June 26, 2020
KnowBe4 you buy whether it's a good investment!
Score 7 out of 10
Vetted Review
Verified User
Overall Satisfaction with KnowBe4 Security Awareness Training
I upload a user list manually every month. I did not find the AD integration to work well in our case because our AD fields are inaccurate.
We use KnowBe4 primarily for simulated phishing testing and training for our users, as well as general social engineering training for staff. It is used across the organization and all onboarding employees are required to take basic training.
- There are several options for simulated phishing emails each quarter, and you can edit their templates to make them fit your organization.
- You can easily upload your staff list using csv files, and automate adding users to groups based on risk factors such as failing a phish test.
- It is easy to identify your highest risk users based on their risky behavior and provide additional training.
- Reporting can be a bit challenging. I do wish it was easier to report on repeat offenders. In general, I wish there were more canned reports.
- It's not clear when you're comparing to those in your industry what factors are being compared, exactly, so it's difficult to assess if it's truly apples to apples.
- Training modules leave alot to be desired. I love the phishing templates, but the training materials seem to be missing something. I like that there are lots of different types of training, but none seem to hit the mark.
- It took me a bit to understand how to lay things out. A recommended quick start guide would've been helpful (and maybe this was available but I didn't see one).
- Adding your own training modules didn't work for me. I tried a few different SCORM tests and couldn't get the kinks worked out. Would've loved if I could!
- We have seen an increase in reporting phishing emails using the phishing alert button, meaning we can prevent malware from reaching other users that may receive the same email. Big time and cost savings by not having to reimage infected machines.
- This is much cheaper than a successful ransomware attack. Hopefully this helps prevent that.
- We can use this instead of paying an auditor to phish our staff.
Sophos' product was offensive to women, frankly--it always showed the woman as the dumb secretary that clicked something her boss had told her not to. It was a decent product otherwise. KnowBe4 has great simulated emails but the training modules could be better.
Do you think KnowBe4 Security Awareness Training delivers good value for the price?
Yes
Are you happy with KnowBe4 Security Awareness Training's feature set?
Yes
Did KnowBe4 Security Awareness Training live up to sales and marketing promises?
No
Did implementation of KnowBe4 Security Awareness Training go as expected?
I wasn't involved with the implementation phase
Would you buy KnowBe4 Security Awareness Training again?
Yes
It's nice to not have to pick from the same templates over and over. However, I do wish phishing training was more varied and fit our case scenarios better. For example, most email links are redirected these days, and every module tells you to hover over the link to determine if it's suspicious. That doesn't work in link redirects!
We mostly make our own reports from the information provided. I frequently download the list of failures each quarter and compile into a PowerPoint to present.