A Highly Customizable InfoSec Training Platform That's Worth the Price
Updated July 08, 2022
A Highly Customizable InfoSec Training Platform That's Worth the Price
Score 10 out of 10
Vetted Review
Verified User
Software Version
Training Access Level III (Diamond)
Modules Used
- KnowBe4 Training Modules (e.g. Common Threats, Creating Strong Passwords, GDPR, etc.)
- The Security Awareness Company Content Library
- Popcorn Training
- Phishing
Overall Satisfaction with KnowBe4 Security Awareness Training
There are three primary opportunities for which we employ KnowBe4: Onboarding new employees with mandatory infosec training and including organization-specific information Phishing Ongoing topics in infosec fundamentals for the organization The onboarding program is set to automatically enroll new employees, requiring them to complete a series of modules that takes about 20 minutes. Then, to complete the training, they have to read our Acceptable Use Policy. But it's the phishing tests we perform that provide accurate measurements on how aware our users are of the potential risks and it's this area that KnowBe4 really performs well for us
- Phishing
- Being able to create custom campaigns
- Being able to include non-KB4 material (such as our own documentation) into a campaign
- KB4 does a wonderful job of keeping content and material up to date
- There are industry-standard professional certifications for infosec. Would love to see KB4 offer professional training geared toward completing some of these certifications.
- Decrease in ID theft through better phishing awareness
- Fewer support calls to the help desk through users knowing how to spot suspicious links and emails
Hands down, KnowBe4 has been a superior product for us. Its reporting features are easy to set up, run, and allows for greater analysis of campaign results. This alone has justified the switch. Additionally, there is a far more comprehensive library of material and, within that library, and excellent variety of types (gamefied, video, etc.)
Do you think KnowBe4 Security Awareness Training delivers good value for the price?
Yes
Are you happy with KnowBe4 Security Awareness Training's feature set?
Yes
Did KnowBe4 Security Awareness Training live up to sales and marketing promises?
Yes
Did implementation of KnowBe4 Security Awareness Training go as expected?
Yes
Would you buy KnowBe4 Security Awareness Training again?
Yes
The speed with which new content is provided has allowed us to keep up to date with current security topics and threats. That, in turn, has provided an increase in the number of our users reporting suspicious emails and link instead of clicking on them. The up to date content has really been impactful in a positive way.
We use SSO and so all logins are handled through Active Directory. This has made user management an easy thing to maintain. Setting up SSO was fast and we did not encounter any difficulties. And, having the SSO login increased the adoption rate and completion rate of assigned training since users were able to use their organization credentials instead of having to create and remember another login.
For phishing campaigns, we look primarily at the click rates for both links and attachments. We do, of course, measure those against the open rate so we can determine the percentage of users who received the email and clicked on a link/attachment. But this also needs to be looked at in relation to KnowBe4's reporting capabilities so we can measure the trends over time.
KnowBe4 Security Awareness Training Feature Ratings
KnowBe4 Compliance Plus
Excellent. In higher education, FERPA is a critically important compliance issue and the training materials provided have been very helpful
Yes
NA
Unsure
KnowBe4 Security Awareness Training New Features
It's made the adoption rate and the completion rate grow. With a prior security training platform we used, we didn't have SSO and one of the chief UX complaints we received dealt with having to create yet another online ID and maintain that password. SSO made it much easier for the users.
From the IT side, SSO resolves one of our more irritating tasks of deprovisioning ex-employees, adding new employees, and all the other tasks associated with user management
From the IT side, SSO resolves one of our more irritating tasks of deprovisioning ex-employees, adding new employees, and all the other tasks associated with user management
Can't really speak to this yet as our primary focus has been on phishing campaigns so far and less on the awareness training.
We haven't used this yet
Using KnowBe4 Security Awareness Training
We require awareness training to be completed by all employees of the organization. This covers everyone from admissions to marketing to IT to accounting, to faculty to...
1 - It's important to, at the absolute very least, have one person on the support team at your organization to be familiar with the basic tenets of information security, identity security, and online safety. They don't need to be experts but they do need to understand why these areas are a concern and the devastating impact that a security breach can have on the financial position of the organization.
- Reducing liability to the organization by training people on phishing techniques
- Teaching people to be very careful of what PII they share
- Teaching people that security awareness at home and at the office are linked
- By including custom material (like tech and info policies) into training campaigns, we've been able to ensure that employees have read updated versions
- We plan to roll out role- and department-specific awareness training within the next 12 months
Evaluating KnowBe4 Security Awareness Training and Competitors
Yes - SANs was our platform before. Although the content was useful and up to date, the reporting capabilities just weren't what we needed. KnowBe4's reporting, combined with the dashboard, makes it a lot easier to quickly understand what is happening at my organization in a glance.
- Product Features
- Product Usability
- Product Reputation
As I have mentioned a few times in my review, it's the administration portion of KnowBe4 that really sold us on the platform. It has great content and we do appreciate the various methods of content delivery but we keep coming back and renewing the subscription because, as the IT admin for our InfoSec initiatives, the ease of use and ability to see at a glance what is happening makes this a great platform to use.
KnowBe4 Security Awareness Training Support
Pros | Cons |
---|---|
Quick Resolution Good followup Knowledgeable team Problems get solved Kept well informed No escalation required Immediate help available Support understands my problem Support cares about my success Quick Initial Response | None |
We did not
I've reached out a couple times to get assistance with setting up a campaign with more complex logic or with adding complexity to phishing attempts and both times not only was my request for help answered quickly, but within a very short period of time, we had a one on one training session provided to walk us through the process.