Professional Documents
Culture Documents
The overall industry initial Phish-Prone percentage benchmark turned out to be a troubling
37.9%. Fortunately, the data showed that this 37.9% can be brought down more than half to just
14.1% within 90 days of deploying new-school security awareness training. The One-Year results
show that by following these best practices, the final Phish-Prone percentage can be minimized
to 4.7% on average. Read the full report.
Phishing
Virtual Risk Officer (VRO) feature, provides insight and actionable metrics that will allow
you to understand the attack surface of your organization, and learn what users might be
more vulnerable to a phishing attack. VRO provides dynamic risk scores, assigned to
users, groups, and your organization as a whole, which enable you to make data-driven
decisions when it comes to your security awareness plan and understand what users are
the most susceptible to a phishing attack. You can even use Smart Group conditional
statements that will allow selection based on individual risk scores. To see a quick video
overview of VRO, click here.
Reporting
Advanced Reporting provides actionable metrics and insight into the effectiveness of
your security awareness training program. You can generate over 60 different styles of
reports that will help you understand where improvements need to be made to improve
the strength of your human firewall. Using machine learning technology, Advanced
Reporting will instantly create reports based on your spoken command or typing relevant
keywords into the Find Report search function.
Smart Groups put your phishing, training and reporting on autopilot. With the powerful
Smart Groups feature, you can use each employees’ behavior and user attributes to
tailor phishing campaigns, training assignments, remedial learning and reporting. Best of
all, Smart Groups is a powerful ad-hoc, real-time query tool that you use to get detailed
reporting for management.
Reporting APIs enable you to customize and obtain reports by integrating with other
business systems that present data from your KnowBe4 Console. Here is the
documentation.
The User Event API allows you to easily integrate data from your users' security-related
events or training activities that happen in other third-party platforms and push them into
your KnowBe4 console.
Training reports for all users or a specific group (who started, completed, started but
never finished)
Details on enrollment %, course started %, incomplete %, completed course,
acknowledged security policy
Filter campaigns on recipient, delivered, opened, clicked, attachment, data entered,
bounced, in CSV
Specify user needs to “Read and Attest” Security Policy for compliance
Individual user "report cards" with their “open and click” history
Reports on browser / device used to open a phishing email and vulnerable browser
plugins the user has installed
Top 50 clickers report
Print to PDF so reports can be sent to management
Personal timeline overview for every individual user
Phishing Reply Tracking reports with who answered and what they said
Roll-up Reporting makes it easy to select reports and compare results in aggregate
across managed KnowBe4 accounts or multi-location offices
Additional Features
NEW PhishER is an add-on product that helps your team prioritize, triage and manage
potentially malicious messages reported by your users. Identify and respond to email
threats fast! PhishML, a new PhishER machine-learning module analyzes every
message coming into the PhishER platform - giving you info to make your prioritization
process easier, faster, and more accurate. PhishER now has a new feature
called PhishRIP, the new email quarantine option that integrates with Microsoft 365 and
G Suite to help you Remove, Inoculate, and Protect your organization against email
threats so you can shut down active phishing attacks fast.
Automated Security Awareness Program (ASAP), allows you to create a customized
Security Awareness Program for your organization that will help you to implement all the
steps needed to create a fully mature training program in just a few minutes!
Security Roles allows you to assign granular access control for users and groups within
the KnowBe4, combined with delegated admin permissions - Here is the Support Article
Achieved FedRAMP Authorization from the U.S. federal government
Automated user provisioning via KnowBe4 Active Directory Integration (datasheet)
or SCIM integration to populate and maintain your users within your KnowBe4 Console.
Password-Less Logins
Anonymous Console Data for European Data Protection compliance
Upload users as flat text, or as CSV with Groups functionality
Full time dedicated U.S.- and U.K.-based support through phone and email
2-Factor Authentication option for both users and admins
Full and partially Managed Service options, we can run this program for you
Phish Alert Button gives your users a way to report simulated and non-simulated phishing
attacks, also available for Outlook Mobile
Bulk delete users using a CSV file (not needed with AD integration)
Training and phishing history are archived even when users are deleted
Supports single sign-on using Security Assertion Markup Language 2.0 SAML
Support for OKTA identity management
Support for Windows Azure Active Directory
Crypto-ransom guarantee