Security Awareness TrainingSecurity Awareness Training Software packages feature simulations of various security threat scenarios so that trainees can learn in a realistic but low-risk environment and ensure that security teams can be tested for threat readiness. Software-based testing and scoring capabilities are included in these applications to test against shared standards and gain psychometrically valid evaluations of team members' capabilities and learning.KnowBe4 Security Awareness Training1 Security Awareness Training (formerly Wombat Security)2 PhishMe3 eLearning Security Awareness Training4 Phish Threat5 Security Awareness Training6 Learning Systems8 Innovation9 Security Awareness Company10 Advanced Cybersecurity Learning Platform11 Development12 PhishLine13 Mentor14 SecurityIQ15 Security Awareness Training16 Defense SecurED17 Allen CyberSim18 Security Awareness19 Awareness Training20 Six Security21 Official@Work22 Security Awareness TrainingPacks23

Security Awareness Training Software

Security Awareness Training Overview

What is Security Awareness Training?

Security awareness training protects enterprises against cyber threats that exploit human nature, or simple inattention. These threats include primarily phishing, and also ransomware or other behavior-based vulnerabilities. Cyber security awareness training services can include instructional materials, live teaching, and realistic phishing simulations. To keep up with evolving attack methods, security training services provide continuous training and updates.

The consensus among cyber experts is that prescheduled classroom training is ineffective on its own. So threat simulation is central to enterprise security awareness training and services. While e-learning libraries are included in many online security awareness training offerings, it is simulations delivered surreptitiously that provide authentic proof of workforce resilience in the face of real cyber attacks. Various kinds of simulated attacks may include spear phishing (e.g. pretending to be a trusted sender), BEC (business email compromise), social engineering attacks, HTTPS spoofing, and drive-by cyber attacks.

After simulations, employees who responded inappropriately can then be trained according to their mistakes via classes and lessons, delivered in-context. Research on attention has led to a preference for microlearning courses: sections that take only 10 minutes or less to complete. After the security awareness testing cycle, service providers offer detailed reports about what simulated attacks were successful, or what if any policies were violated.

Providers of security awareness training may also provide privacy or compliance training, or behavior monitoring and remediation.

Features of Security Awareness Training

Security awareness training offerings may consist of the following:

  • Pre-assessments, or baseline testing to assess vulnerability

  • Phishing simulation imitating known attack patterns

  • Random, asynchronous attack delivery

  • Phishing reply notification & alerting, reply tracking

  • Non-email based testing (e.g. Smishing / SMS, or Vishing / voice, found USB drive)

  • Testing analytics and user attribution (e.g. role, day/time of response, demographics)

  • Industry benchmarking for security awareness performance

  • Prebuilt library of Interactive training modules

  • E-learning delivery with live or self-paced modules

  • Security awareness materials for distribution

  • Custom-test building tools for company-specific tests

  • Reinforcement training, gamification, knowledge retention testing

  • Auto-assign security awareness training for new or vulnerable employees

  • Company-wide simulation response analytics and reporting

  • Certification training for security personnel

  • Industry-specific certifications (e.g. federal security, banking)

Pricing Information

Security awareness training is available on per seat basis. Larger companies with greater pools of employees pay less per seat. Additionally, security awareness training offer tiers of service. Lower tiers of service provide core services like phish testing, and online training. Higher levels of service may include more elaborate testing (e.g. found USB device testing, BEC simulation), and more testing modules, as well as knowledge certifications. Security awareness service providers may also provide cybersecurity suites of software, or security appliances. These vendors offer the option to bundle security awareness training with email security services, threat intelligence, and related services.

Security Awareness Training Products

Listings (1-23 of 23)

KnowBe4 Security Awareness Training

<a href='' target='_blank' rel='nofollow noopener noreferrer'>Customer Verified: Read more.</a>
74 Ratings

KnowBe4 is a security awareness training and simulated phishing platform. The vendor reports that is used by more than 28,000 organizations around the globe. Founded by IT and data security specialist Stu Sjouwerman, KnowBe4's goal is to help organizations address the human element of security by ra…

Proofpoint Security Awareness Training (formerly Wombat Security)

<a href='' target='_blank' rel='nofollow noopener noreferrer'>Customer Verified: Read more.</a>
53 Ratings

Proofpoint Security Awareness Training (formerly ThreatSim from Wombat Security) is a cloud-based training platform that simulates threat scenarios (e.g. phishing) and also provides assessment testing developed by Wombat Technologies, which was acquired by Proofpoint in March 2018.

Cofense PhishMe is a cyber threat and phishing simulator meant to be of use in training employees to be wary against threats and also to gain information about general employee threat knowledge and preparedness. A free version is available for small business.

We don't have enough ratings and reviews to provide an overall score.

Terranova WorldWide in Quebec offers a wide range of security awareness products and support, notably phishing simulations and e-learning applications and training modules.

We don't have enough ratings and reviews to provide an overall score.

Security Innovation in Wilmington offers security awareness and education training modules supporting teaching and evaluation / assessment.

We don't have enough ratings and reviews to provide an overall score.

Dutch company BeOne Development offers security awareness training modules from pre-packed modules to more customized plans dependent on the needs of the requesting enterprise.

We don't have enough ratings and reviews to provide an overall score.

PhishLine provides a suite of applications supporting phishing social engineering simulations with data analytics for evaluation of results as well as targeted training and education to boost readiness. PhishLine was acquired by Barracuda in January 2018, and is now part of Barracuda's security port…

We don't have enough ratings and reviews to provide an overall score.

Security Mentor in California offers computer-delivered training modules supporting employee security awareness, and as well as their phishing simulator: PhishDefense.

We don't have enough ratings and reviews to provide an overall score.

InfoSec Institute in Illinois offers SecurityIQ, their security awareness and anti-phishing simulation system featuring PhishSim, their simulator, and AwareEd, which is the company's computer-based security awareness training modules.

We don't have enough ratings and reviews to provide an overall score.

Kaspersky Labs offers Security Awareness Training and software learning management tools, gamified teaching, and training modules specific to employees in various industries designed to prepare the workforce against phishing, and other cyber threats.

We don't have enough ratings and reviews to provide an overall score.

Mimecast Awareness Training is a security awareness training and cyber risk management platform that helps the user to combat information security breaches caused by employee mistakes, dramatically reducing risk.

We don't have enough ratings and reviews to provide an overall score.

Hut Six Security allows users to train, test and track an organization's information security culture with one comprehensive solution. The service combines Hut Six's Information Security Awareness Training with its Simulated Phishing platform. The dashboard integrates training results with phishing …

We don't have enough ratings and reviews to provide an overall score.

(ISC)2 offers a variety of computer-based and delivered pre-built security training modules packaged in their offering Official@Work, which is available to enterprises.