KnowBe4 is worth the cost!
Updated August 12, 2021
KnowBe4 is worth the cost!
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with KnowBe4 Security Awareness Training
The KnowBe4 Security Awareness Training is being used as a platform to test, as well as to house the security awareness training for all of our employees. It addresses our need to have a method of securely testing our employees in regards to both phishing and vishing, while being able to keep track of their failures and provide additional training if needed.
- API Integration - Their API makes it easy to pull data for running reports as well as syncing user accounts.
- User/Group Management - Easily create and manage multiple groups with different security levels and different frequencies of testing.
- Pre-made Email Templates - a wide variety of system generated as well as community phishing emails to pick from. The current events category is insightful in seeing what current phishing emails are trending.
- Phishing Button - Slightly confusing to set up. When we first tested it out, the document needed to be updated to match changes made by Google.
- Documentation - Documentation on how to create custom templates or add features to templates would be appreciated. A few exist but they are hard to find and have no easily accessible central area to find all of the information.
- More Short Trainings - There are a few shorter trainings but anything beyond 10 minutes in length and we see a drastic decrease in the number of users who actually complete the training. More micro modules to select from would be extremely helpful.
- Increased awareness of phishing emails and of users reporting possible phishing attempts, up 20% compared to 3 years ago.
- An annual decrease in falling for simulated phishing emails, from 30% to 20%.
- Cost savings by getting rid of the need to have a secondary platform to manage and host IT security training.
The availability of fresh training content and access to different content publishers has greatly increased our user's participation in completing training. Being able to have a different variety in the length of time for content has helped us to keep our training short and sweet, which has encouraged users to actually complete the training.
Users are synced in automatically with their groups from AD. A new group is created for each phishing campaign to keep track of the clickers and assign training. The ability to create multiple groups helps to keep track of high-risk users as well as those who are at a higher risk of being targeted by actual phishing emails.
The most important metrics are overall phishing failure rates and training completion rates. We use these metrics in our quarterly reports, as well as use them for justification to the higher-ups as the why we need KnowBe4.
KnowBe4 Security Awareness Training New Features
The Active Directory integration was a game-changer for our user provisioning. It automatically updates several times a day and there is no more need to manually update users. Before the integration, we were manually exporting all of the user's accounts to a .csv and comparing them to our active Directory to see who needed to be added or removed. The SSO integration is also amazing because it streamlines everything that our users have to do to sign in. Both features have greatly improved our user provision and management experience by making it user-friendly for both the managerial side as well as the user side.
Our organization uses AI-Driven personalized training to target high-risk employees and departments. This has greatly increased the precision of phishing in those departments with more relevant targeted phishing campaigns. It has also helped to increase employee awareness of specific phishing emails and phone calls that are more pertinent in regards to their job function and access.
We do not use PhishER or PhishFlip at this time. We are looking into getting them since the feature seems extremely beneficial and easy to use.
KnowBe4 Security Awareness Training Support
| Pros | Cons |
|---|---|
Quick Resolution Good followup Knowledgeable team Problems get solved Kept well informed No escalation required Support understands my problem Support cares about my success Quick Initial Response | None |
We did not purchase premium support. The base supported seemed sufficient to cover our needs and it was a way to save some extra money.
This past February we were having issues loading the Training Campaigns section on the console. It just showed a spinning wheel and never loaded. In under an hour, a technician got back to us about the issue. It appeared to be a temporary blip and the issue fixed itself. The technician made sure to go through check that the issue wasn't happening on any other sections of the console.
Using KnowBe4 Security Awareness Training
| Pros | Cons |
|---|---|
Like to use Relatively simple Easy to use Well integrated Consistent Quick to learn Convenient Feel confident using Familiar | None |
- Scheduling phishing campaigns.
- Manually importing users (if not using the sync functionality).
- Finding content in the Mod-store.
- Setting up the Phish alert button.
- Figuring out which report to run to grab the exact metrics that are needed.