Cofense PhishMe is a cyber threat and phishing simulator meant to be of use in training employees to be wary against threats and also to gain information about general employee threat knowledge and preparedness. A free trial is available for small business.
N/A
Infosec IQ
Score 7.7 out of 10
N/A
Infosec IQ security awareness and training aims to empower employees with the knowledge and skills to stay cybersecure at work and home. With over 2,000 awareness and training resources, Choose Your Own Adventure® Security Awareness Games and personalized learning experiences, the solution aims to present everything needed to prepare employees and strengthen the user's cybersecurity culture. The platform can be customized and personalized to match an organization’s…
N/A
Pricing
Cofense PhishMe
Infosec IQ
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Cofense PhishMe
Infosec IQ
Free Trial
Yes
No
Free/Freemium Version
No
No
Premium Consulting/Integration Services
No
No
Entry-level Setup Fee
No setup fee
No setup fee
Additional Details
—
—
More Pricing Information
Community Pulse
Cofense PhishMe
Infosec IQ
Features
Cofense PhishMe
Infosec IQ
Security
Comparison of Security features of Product A and Product B
Cofense PhishMe
7.8
Ratings
9% below category average
Infosec IQ
8.3
Ratings
3% below category average
Single sign-on capability
7.40 Ratings
8.50 Ratings
Role-based user permissions
8.20 Ratings
8.20 Ratings
Security Awareness Training
Comparison of Security Awareness Training features of Product A and Product B
It's a very apt tool for the scenario where there are multiple users and verticals in an organisation. Phishing Campaigns and recording their response actions is quite easier through this tool. Not suitable for a small organization (less than 500) that can maybe use some open tools or self-made emails for campaigns.
If the company is very small, the Infosec IQ solution might be a little overkill. However, for a medium to large company, I think Infosec IQ is a great tool for providing cybersecurity training, reporting, and assessment testing for all employees. Based on the information gathered during training, testing, etc., it allows the cybersecurity manager to focus on what employees need additional training or potential weak spots in the current training. This is important information to report to senior leadership. It also serves to meet cybersecurity awareness training that may be a compliance requirement for customer contracts, governmental standards, etc
Set it and forget it: Multiple recurring options for campaigns to run automatically.
Program assistance: The team at InfoSec creates content intended to meet annual training needs and produces how-to and promotional content to help guide resellers in packaging and deploying.
Integrates with O365 and can deploy a button to minimize false alarms from employees when they accurately identify training spam.
Many of the URLs come in with an unknown reputation and although it may be challenging from threat intel feeds, somehow allowing a more in-depth analysis of the URL can provide better/quicker decision making or validation.
Adjustable widgets for reporting, although the provided are already built very well.
Provide in-house templates or summaries of actionable items, such as a single brief on a major phish.
because with infosec we are able to achieve our goals regarding training awarness, and we are really satisfied with frecuency they update their content, so our users never get bored with the courses and campaigns we run monthly, they also have a great support team, and we can also have role courses
Its built with UX in mind and is aimed at non-tech people, to ensure that almost everyone can run the campaign. But if we go deeper - sometimes you will need an HTML editor or support in order to figure out some advanced edits you might want to add in your scenarios.
They continue to work on the interface but there are still weird places where you have to hover to see options come up, weird navigation sometimes. Administering is not my favorite part of it. Need to increase their capability for uploading your own training.
I have not had to use their support for pretty much anything. The software works well, and is very intuitive. I would imagine their support would be rather basic as there is not too much that can go wrong with a report phishing button, and if it were I would probably consider a different software.
We've gotten great help when we needed it. When our IT guy left who managed security, we had limited knowledge internally with all of the configuration and implementation. Support helped get us running quickly. They spent an hour or so with the new IT person and they hit the ground running. That was super easy.
PhishMe is a market leader in terms of phishing simulation solutions. The customization appears unmatched when compared with competitors and the support we have experienced from Cofense has been excellent. Phish me offers lots of realistic templates which are updated regularly which is far ahead of other solutions. Phish me also provides lots of detailed statistics as well as high-level numbers which are really useful for some clients who want details, and others who only want high-level overviews.
When evaluating potential solutions for their effectiveness and return on investment (ROI), several factors stood out in our decision to choose Infosec IQ: Single Sign-On (SSO) Integration, excellent Support and Customer Service: and scalability/flexibility:
From a normal user's perspective, it's an easy and fast, very very user-friendly phishing email reporting structure. No need to remember any email address, no need for sophisticated handling of malicious emails while sending/ reporting. Just a click and it is done.
From the admin and analyst point of view: Easy and clutter-free triaging pane, IOC reputation check facility, Rules and Recipes section for automation and focused triaging, Notification to the reporter based on the triaging done is really a helpful feedback loop.
Overall: Simple to handle, less learning curve, well managed, less administration time, fewer issues, less maintenance time.
InfoSec IQ has been a profitable addition to our security stack. After getting everything set up, the normal profit margin per customer is 65% - 75%.
Many cyber-security insurance policies require some form of mandatory employee security training, and some policy premiums can be reduced based on your organization's training statistics.
It has allowed us to have a common "cyber-security" language with our customer base, making support requests flow smoother and breaches addressed quicker. It also lets us establish and enforce a more security-aware workplace tone with our customers.