Cofense PhishMe is a cyber threat and phishing simulator meant to be of use in training employees to be wary against threats and also to gain information about general employee threat knowledge and preparedness. A free trial is available for small business.
N/A
Infosec IQ
Score 7.6 out of 10
N/A
Infosec IQ security awareness and training aims to empower employees with the knowledge and skills to stay cybersecure at work and home. With over 2,000 awareness and training resources, Choose Your Own Adventure® Security Awareness Games and personalized learning experiences, the solution aims to present everything needed to prepare employees and strengthen the user's cybersecurity culture. The platform can be customized and personalized to match an organization’s…
N/A
Pricing
Cofense PhishMe
Infosec IQ
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Cofense PhishMe
Infosec IQ
Free Trial
Yes
No
Free/Freemium Version
No
No
Premium Consulting/Integration Services
No
No
Entry-level Setup Fee
No setup fee
No setup fee
Additional Details
—
—
More Pricing Information
Community Pulse
Cofense PhishMe
Infosec IQ
Considered Both Products
Cofense PhishMe
Verified User
Anonymous
Chose Cofense PhishMe
PhishMe is a market leader in terms of phishing simulation solutions. The customization appears unmatched when compared with competitors and the support we have experienced from Cofense has been excellent. Phish me offers lots of realistic templates which are updated regularly …
Cofense phishing simulation product is one of the best security awareness solutions that our security team has tested. The product is feature-rich and easy to navigate. Awareness templates are numerous to select from and in multiple languages, which is a big plus. Campaign …
Cofense PhishMe was the first choice for us as the user interface as well as their bundle package with Cofense Triage and Vision has helped the organisation to alleviate the overall security awareness posture. The other vendors did not provide a vast range of phishing scenarios …
Cofense PhishMe is price competitive and provides lots of value. We are also utilizing Cofense's other products such as Triage, Vision, and Report PhishMe. We are seeing lots of value from these products and hopefully, your company will see some value also. Support also is …
I have not used similar kinds of products previously. So this is hard for me to compare anyone here. But as long as I used PhishMe I loved it. The ease of use, the neat designs, and distinct tabs help reduce the clutter. The learning curve to get comfortable with the tool is …
Cofense provides more templates. We couple the reporter service with the Triage product & managed triage service. Cofense's support is better and more engaged. We utilized Wombat before acquisition.
Cofense is more comprehensive in its offerings given that the field of email security and email-related staff awareness is their focus area, while for Cymulate, it is only a component of testing and nothing else. Hence, it was quite beneficial to use Cofense in that regard.
Cofense was selected as a vendor before I was in this role. Another vendor was evaluated for additional security awareness training but not to replace the Cofense PhishMe program. We also looked at Ninjio to supplement our phishing education program.
We chose PhishMe due to its ease of use and integration. The many different scenarios available and the price point were the main selling points vs the competitors.
For reporter, we've used GoSecure IDR. KnowBe4 is probably the biggest paid competitor I've seen and tried a demo.
For opensource, things like GoPhish or the Social Engineering Toolkit within Kali Linux aren't bad. Both require more effort, so you either pay Cofense for ease of …
We haven't used another provider. However, we used our internal phishing simulation solution prior to contracting Cofense. The internal solution gives you more flexibility (you can send emails to any domain and can impersonate any company) but you'd be missing the Reporter …
Our previously used product was SANS ACLP. This wasn't an altogether horrible product and for the time we used it the purpose for its use was served. We had multiple issues though with how this product delivered emails, captured clicks, and generated reporting once the …
We closely looked at KnowBe4's platform as well when it came time to renew. We chose to continue with Cofense because we already had over a year's worth of data in the platform that we would lose by switching vendors.
I have not used any other products that do the same thing as PhishMe. I was not the decision maker in deploying PhishMe so I can not comment as to why we chose it or any other similar competitors in the field. PhishMe works well for what we use it for.
Cofense PhishMe is a very usable and customizable suite and compared to a previous product, it's hard to go back. After using [Cofense] PhishMe, I don't want to look for another product since the features are rich and the usability is relatively straightforward. Information and …
Infosec brings better content, and has the best Spanish library that we found when comparing with others, since we are located in Dominican Republic, we need most of our employees to be able to understand the trainings for a better comprehension, so this why we decided to pick …
Webroot also has their own CSAT platform. We were with them before but Infosec IQ is much better and has a lot more content, it is cheaper, most importantly it is customizable. For example, if we want to send out a phishing email and customize it so it really looks real, like …
I would say that Infosec IQ stacks up evenly with KnowBe4. They have very similar training and awareness videos. I would say that Infosec IQ provides more content for the overall prices. I would say that KnowBe4 provides better product support to ensure you are getting the most …
They seemed pretty equivalent. I chose Infosec based on a business partner's recommendation.
I'm very happy with my choice. I cannot overstate how important it is to have training modules which are concise, packed with valuable information, and engaging. The Choose Your Own …
Knowbe4's product is good, but its harder to use and the quality of the phishing simulations are not as good quality in my opinion. And the pricing model is difficult. To get the basic stuff we needed we had to buy stuff we didnt and navigate an overly complicated pricing model.
User friendly interface, ease of management for the admin side and simple integration of Infosec IQ stack up against other contenders that we evaluated
When evaluating potential solutions for their effectiveness and return on investment (ROI), several factors stood out in our decision to choose Infosec IQ: Single Sign-On (SSO) Integration, excellent Support and Customer Service: and scalability/flexibility:
I haven't used or been involved in the process of software/programs like Infosec IQ in previous jobs. Most of them were developed in-house as the organizations I worked for were much larger and had staff to design and manage training like these. And since our current MSP has …
I haven't been part of a team during the evaluation period of a product like Infosec IQ. The previous company I worked for had a different group make this decision and this company already had it in place before I joined. Though I would have loved to see what else was …
To be honest I did not like the fact that KnowB4 supports Scientology. It doesn't really have anything to do with the product. I just could not financially support a company giving money to that group.
I decided to purchase Infosec IQ over the competitors I evaluated because I thought the quality and content of their training modules were better, less expensive, and provided more flexibility.
InfoSecIQ was selected and deployed by my colleagues before joining the team so I am not confident in answering this question. However, based on my experience while dealing with Infosec IQ, It provides good training materials with animation and good phishing campaigns. …
It's a very apt tool for the scenario where there are multiple users and verticals in an organisation. Phishing Campaigns and recording their response actions is quite easier through this tool. Not suitable for a small organization (less than 500) that can maybe use some open tools or self-made emails for campaigns.
If the company is very small, the Infosec IQ solution might be a little overkill. However, for a medium to large company, I think Infosec IQ is a great tool for providing cybersecurity training, reporting, and assessment testing for all employees. Based on the information gathered during training, testing, etc., it allows the cybersecurity manager to focus on what employees need additional training or potential weak spots in the current training. This is important information to report to senior leadership. It also serves to meet cybersecurity awareness training that may be a compliance requirement for customer contracts, governmental standards, etc
Set it and forget it: Multiple recurring options for campaigns to run automatically.
Program assistance: The team at InfoSec creates content intended to meet annual training needs and produces how-to and promotional content to help guide resellers in packaging and deploying.
Integrates with O365 and can deploy a button to minimize false alarms from employees when they accurately identify training spam.
Many of the URLs come in with an unknown reputation and although it may be challenging from threat intel feeds, somehow allowing a more in-depth analysis of the URL can provide better/quicker decision making or validation.
Adjustable widgets for reporting, although the provided are already built very well.
Provide in-house templates or summaries of actionable items, such as a single brief on a major phish.
because with infosec we are able to achieve our goals regarding training awarness, and we are really satisfied with frecuency they update their content, so our users never get bored with the courses and campaigns we run monthly, they also have a great support team, and we can also have role courses
Its built with UX in mind and is aimed at non-tech people, to ensure that almost everyone can run the campaign. But if we go deeper - sometimes you will need an HTML editor or support in order to figure out some advanced edits you might want to add in your scenarios.
They continue to work on the interface but there are still weird places where you have to hover to see options come up, weird navigation sometimes. Administering is not my favorite part of it. Need to increase their capability for uploading your own training.
I have not had to use their support for pretty much anything. The software works well, and is very intuitive. I would imagine their support would be rather basic as there is not too much that can go wrong with a report phishing button, and if it were I would probably consider a different software.
We've gotten great help when we needed it. When our IT guy left who managed security, we had limited knowledge internally with all of the configuration and implementation. Support helped get us running quickly. They spent an hour or so with the new IT person and they hit the ground running. That was super easy.
PhishMe is a market leader in terms of phishing simulation solutions. The customization appears unmatched when compared with competitors and the support we have experienced from Cofense has been excellent. Phish me offers lots of realistic templates which are updated regularly which is far ahead of other solutions. Phish me also provides lots of detailed statistics as well as high-level numbers which are really useful for some clients who want details, and others who only want high-level overviews.
When evaluating potential solutions for their effectiveness and return on investment (ROI), several factors stood out in our decision to choose Infosec IQ: Single Sign-On (SSO) Integration, excellent Support and Customer Service: and scalability/flexibility:
From a normal user's perspective, it's an easy and fast, very very user-friendly phishing email reporting structure. No need to remember any email address, no need for sophisticated handling of malicious emails while sending/ reporting. Just a click and it is done.
From the admin and analyst point of view: Easy and clutter-free triaging pane, IOC reputation check facility, Rules and Recipes section for automation and focused triaging, Notification to the reporter based on the triaging done is really a helpful feedback loop.
Overall: Simple to handle, less learning curve, well managed, less administration time, fewer issues, less maintenance time.
InfoSec IQ has been a profitable addition to our security stack. After getting everything set up, the normal profit margin per customer is 65% - 75%.
Many cyber-security insurance policies require some form of mandatory employee security training, and some policy premiums can be reduced based on your organization's training statistics.
It has allowed us to have a common "cyber-security" language with our customer base, making support requests flow smoother and breaches addressed quicker. It also lets us establish and enforce a more security-aware workplace tone with our customers.