Spectacular Security Awareness Training the saved the day for our company.
October 29, 2022
Spectacular Security Awareness Training the saved the day for our company.
Score 10 out of 10
Vetted Review
Verified User
Software Version
Training Access Level III (Diamond)
Modules Used
- Kevin Mitnick Security Awareness Training
- KnowBe4 Cybersecurity Awareness Posters
- KnowBe4 Training Modules (e.g. Common Threats, Creating Strong Passwords, GDPR, etc.)
- KnowBe4 Training Micro-modules (e.g. Captain Awareness, Credit Card Security, etc.)
- The Security Awareness Company Content Library
- Popcorn Training
Overall Satisfaction with KnowBe4 Security Awareness Training
We leverage KnowBe4 security awareness training extensively. We use it for our main annual security awareness campaigns, quarterly security awareness campaigns, phish testing, supplemental training when staff falls for phish testing, Weekly "Scam of the week" emails, security awareness posters, and PhishER for inspection of potentially malicious emails. And even an LMS system for our HR and a few other teams, so training is all in one place. In addition, every year for cybersecurity month, we include other activities, including raffles that give entries based on staff performance in training, phishing testing and reporting suspicious emails. We couldn't be happier with the solution.
Pros
- Getting great easy to understand content to our employees.
- Report on training progress for all our employees.
- Performing automated phish testing.
- Assigning training based on phish test results and essentially giving report cards to employees to identify areas/individuals that require further training.
Cons
- I wish that we could reset an employee's training progress from within the user's profile page without having to navigate to the campaign itself and find the individual. This slows down ticket resolution.
- I wish renaming groups would automatically be reflected everywhere that group is referenced within KnowBge4. Currently, if you rename a non-smart group, you will have to go to every smart group that references it to correct the group name manually, as it will not happen automatically.
- There are a couple of great KnowBe4 training campaigns that are refreshed every year (Red Flags, common threats, internet security and you, etc.) , however, we did not see a lot of other KnowBe4-specific training modules pop up over the last year beyond those core campaigns. KnowBe4 has made a ton of other vendor training modules available within the tool, but we are partial to those created by KnowBe4 themselves as they are usually the best of the bunch, so we are hoping that we will see more in the coming months.
- 32% of our employees failed our very first phishing test; after just a few months on our new security awareness program, we reduced the number to 7.5%. That number has continued to decrease as we keep expanding upon our training program, and we now hover around 2% (which includes new hires who have not completed training).
- We have dodged several very serious security incidents since our employees are now trained to identify and report such issues.
KnowBe4 has considerably more content and delivers it in a better manner than Barracuda does. KnowBe4 also came in cheaper than the alternatives that we were considering.
Do you think KnowBe4 Security Awareness Training delivers good value for the price?
Yes
Are you happy with KnowBe4 Security Awareness Training's feature set?
Yes
Did KnowBe4 Security Awareness Training live up to sales and marketing promises?
Yes
Did implementation of KnowBe4 Security Awareness Training go as expected?
Yes
Would you buy KnowBe4 Security Awareness Training again?
Yes
This has been huge. We perform at least four separate global security awareness training campaigns, each with multiple modules, throughout the year. Not to mention the supplemental training campaigns we run for phishing failures. If the content were not so extensive, this would never have worked for us because we make it a point not to re-use the same campaign twice.
We recently implemented ADI sync with our AD environment, and this has been a godsend. Now within just a few hours, any updates to employment status are automatically updated in KNowBe4, and any appropriate training is assigned accordingly.
The number of phish test failures and the number of phish test reports. Training status is also critical as it allows us to ensure training is completed, but since we automatically govern a lot of this with automated notifications, the process is mostly hands-free.
Comments
Please log in to join the conversation