One of the best security investments we've made so far!
December 30, 2021

One of the best security investments we've made so far!

MICHAEL PRY | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User

Software Version

Training Access Level II (Silver & Gold)

Modules Used

  • KnowBe4 Training Modules (e.g. Common Threats, Creating Strong Passwords, GDPR, etc.)
  • KnowBe4 Training Micro-modules (e.g. Captain Awareness, Credit Card Security, etc.)

Overall Satisfaction with KnowBe4 Security Awareness Training

We set up and change campaigns regularly to phish our own users to see where our security vulnerabilities lie within our user group. In the beginning, many users fell for the phishing attempts and were required to go through remedial training. Over time, they learn from their previous mistakes and the failure percentage has dropped drastically. We have had several months of 0% failures. Many times users have asked about an e-mail they suspected to be a phishing test only for it to be an actual phish message that they did not activate. I believe using Knowbe4's phishing program has very likely saved our organization from getting hit with ransomware through user training. It has been well worth its cost.
  • Trains users to avoid falling for e-mail phishing attempts.
  • Helps secure your organization against e-mail threats.
  • Offers excellent representative support.
  • While the interface is pretty straight forward, it could be made a little more intuitive.
  • Integration with Active Directory has never worked very well for me.
  • It has likely protected our organization from ransomware, possibly many times.
  • It has shown where our weak security spots are within our user group.
  • A security-minded employee helps protect customer information.

Do you think KnowBe4 Security Awareness Training delivers good value for the price?


Are you happy with KnowBe4 Security Awareness Training's feature set?


Did KnowBe4 Security Awareness Training live up to sales and marketing promises?


Did implementation of KnowBe4 Security Awareness Training go as expected?


Would you buy KnowBe4 Security Awareness Training again?


The constantly evolving content helps keep employees on their toes and not get used to the same phishing formats. Each time I've mixed up the content with new ones I catch a few more people but they are quick to adapt. The content creators are very creative and quick to use tricky news-worthy bait just like a real phisher would use. The advanced ones are really tricky and hard to catch... which is a good thing.
We have Active Directory integration on our network that updates the users' list at Knowbe4 on a schedule. While that is a great feature, it doesn't seem to stay working and needs to be restarted periodically. It's not really a problem since our user-base doesn't change very often. It's not difficult, it's just remembering to do it. There is a good chance that it's not a flaw in the KnowBe4 platform, it very well could be the system ours is set up on in our network that syncs the changes. I just haven't bothered with it since it isn't a big issue for me. If you don't have a large user base, you can just add and remove them individually.
By far the phishing summary at the end of each campaign showing how many and which users failed the tests is the most important for me. It helps you follow up with those users to make sure they understand why they failed the test and how to avoid failing it in the future by looking for the red flags.
If you have a large organization where individual training of each user personally just isn't feasible, Knowbe4 is definitely the way to go. It will train all your users simultaneously. You can start easy and increase the complexity over time as your users learn to spot the simple ones. If you have an organization that may not be that large but has frequent turnover with employees and you don't want to dedicate time constantly training new people on security, Knowbe4 is the way to go as well. The only situation where it may not be a fit is a small organization with tech-savvy users or organizations with staff dedicated to constantly training and watching their users.