I can't think of an easier way to get an Infosec program up and running
July 08, 2020
I can't think of an easier way to get an Infosec program up and running

Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with KnowBe4 Security Awareness Training
We currently import our user base and keep a minimal amount of user information in KnowBe4. Users and groups are the key elements that allow us to tailor our Infosec training and phish testing campaigns. Our plan is to utilize Active Directory Integration (ADI) in the next 12 months.
We are using KnowBe4 Security Awareness Training as the platform for our organization's Security Awareness Training program. KnowBe4 is used for regulatory compliance for HIPAA and JCAHO. Online training is given regularly to existing employees and to new hires and phishing test campaigns are administered to assess user knowledge and overall organization Information Security Awareness.
Pros
- Comprehensive phish testing campaigns and user risk evaluation
- A wide variety of online training modules covering Infosec related topics
- Risk scoring for users and groups allowing for more focused testing and training
- Automated Infosec training program to guide platform setup and administration
Cons
- Ability to add customized training modules that an organization can customize
- The complete training library is only available at the top tier subscription level. More should be available for lower tiers.
- When weighed against the cost and potential damage from a breach, the investment return of the KnowBe4 platform subscription is quite high.
- Ease of setup and maintenance keeps administrative costs low.
- Online training and testing reduces the load on our Training Department. They only have to oversee training during onboarding of new hires.
- Infosec IQ and SANS Advanced Cybersecurity Learning Platform
At the time of our evaluation, KnowBe4 stood out because of the size of its training library and the ability to customize training and phishing campaigns to match our organization's corporate and user culture, risk level, and regulatory compliance needs. The platform requires very little administrator training and we were able to get up and running very quickly.
Do you think KnowBe4 Security Awareness Training delivers good value for the price?
Yes
Are you happy with KnowBe4 Security Awareness Training's feature set?
Yes
Did KnowBe4 Security Awareness Training live up to sales and marketing promises?
Yes
Did implementation of KnowBe4 Security Awareness Training go as expected?
Yes
Would you buy KnowBe4 Security Awareness Training again?
Yes
New training content is provided on a regular basis and is well-timed for our annual Infosec Awareness Training assignments. At the top tier, training content from a wide range of content publishers is available, including a well-produced serial video.
User and group risk profiles allow us to gauge program effectiveness and can be viewed on the dashboard or in more detail on reports. We have established policies and procedures to measure and enforce user compliance with training programs. User and group reports show risk ratings based on their phish test performance and can be assigned additional training/testing as needed.
Using KnowBe4 Security Awareness Training
Pros | Cons |
---|---|
Like to use Relatively simple Easy to use Technical support not required Well integrated Consistent Quick to learn Convenient Feel confident using Familiar | None |
- Setting up users and groups to reflect risk profiles by job/role
- Setting up baseline training for existing and new hires
- Getting a baseline phish test campaign set up and deployed to the user population. Tailoring failure workflow (landing and OOPS pages) to varying degrees of user awareness.
Comments
Please log in to join the conversation