We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The main thing is the overall report card. We get to tell the percentages of users who click on links and who don't click on links. We also get an overall score or risk score from them, which also helps us."
"There are many valuable features. It's already deployed in the cloud, and you don't have to install anything. You just upload your users to the cloud and tweak something if needed. You can whitelist some servers to work with this properly. When everything is ready, you can start using the platform and its many automated features."
"It is very simple to install and you can do it by yourself."
"It is simple to push tests out to a group of users."
"The solution is easy to integrate because it is on the cloud. We have been able to limit users to only accessing the Sophos platform by modifying the firewall and Sophos platform settings. The dashboard gives us detailed reports allowing us to be able to manage better."
"The scalability is very good."
"It is easy to use."
"It can be more interactive with users. We want to put the users in different scenarios and let them make decisions. For example, instead of making users go through a video and then asking questions, it can have a video where they click on the scenarios and have to make decisions. It can maybe have something like a live simulation. It would be nice for users."
"It could be more localized for Ukrainian users. This platform is international, and it has a lot of material in different languages, but not in Ukrainian and Russian languages. There's plenty of different content updated regularly for English, French, and German users. They have a lot more information, and Ukrainian users also want more."
"The pricing of Sophos Phish threat can be improved."
"I would like to see more manager-level training that teaches what needs to be done after a phishing email attack is found."
"The security of the solution could improve."
"The solution could be much more secure."
"It would be great if the price was reduced."
"I don't know the cost, but I believe we are paying yearly. We did like a three-year or five-year contract. I am not aware of any extra costs in addition to a standard licensing fee."
"Licensing is paid on a yearly basis. You can go to the official site to check their approximate pricing. It's based on the number of users or staff. It can vary from country to country, but for Ukraine, it works as it's stated on the site."
"There is a license required for this solution and the cost depends on the number of users."
"Licensing fees are paid annually."
Old school Security Awareness Training is static. It’s a one-time event without follow-up. KnowBe4's Kevin Mitnick Security Awareness Training starts with a baseline test to show the actual Phish-prone percentage of your users. Then it steps users through effective, interactive, on-demand browser-based training. As step three, you send frequent simulated phishing attacks to your employees to reinforce the training. This last feature, frequent simulated phishing attacks (we recommend at the very least once a month) really creates a change in behavior.
Sophos Phish Threat emulates a range of phishing attack types to help you identify areas of weakness in your organization’s security posture, and empower users through engaging training to strengthen your organizations defenses.
KnowBe4 is ranked 1st in Security Awareness Training with 2 reviews while Sophos Phish Threat is ranked 2nd in Security Awareness Training with 5 reviews. KnowBe4 is rated 9.6, while Sophos Phish Threat is rated 9.0. The top reviewer of KnowBe4 writes "A straightforward and stable solution that provides an overall report card and is helpful in reducing the risk score". On the other hand, the top reviewer of Sophos Phish Threat writes "Easy to integrate, detailed reports, and high level support". KnowBe4 is most compared with Proofpoint Email Protection, Wombat Security Education Platform, Cofense PhishMe, Barracuda PhishLine and Mimecast Awareness Training, whereas Sophos Phish Threat is most compared with Barracuda PhishLine and Mimecast Awareness Training. See our KnowBe4 vs. Sophos Phish Threat report.
See our list of best Security Awareness Training vendors.
We monitor all Security Awareness Training reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.