Try our new research platform with insights from 80,000+ expert users

KnowBe4 vs Sophos Phish Threat comparison

 

Comparison Buyer's Guide

Executive Summary
 

Categories and Ranking

KnowBe4
Ranking in Security Awareness Training
1st
Average Rating
9.4
Number of Reviews
4
Ranking in other categories
No ranking in other categories
Sophos Phish Threat
Ranking in Security Awareness Training
3rd
Average Rating
8.8
Number of Reviews
10
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of December 2024, in the Security Awareness Training category, the mindshare of KnowBe4 is 31.9%, down from 36.7% compared to the previous year. The mindshare of Sophos Phish Threat is 5.1%, up from 4.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Awareness Training
 

Featured Reviews

Brad Mathis - PeerSpot reviewer
Lowers human element risks and has innovative training
Some more AI-driven automation for creating training and phishing testing campaigns, as well as automated reporting would help. The Phish Alert button could be improved, although it is understood this is due to Microsoft's constant changes. Any improvements in wizards and documentation are always a good thing!. Additonal areas for improvement could be around the technical training and best practice training areas such as NIST CSF, CISv8, Cyberinsurance, and more. Clearer whitelisting requirements are always appreciated. However, the current levels are significant and appreciated.
Carlos Roberto Da Silva - PeerSpot reviewer
Significantly reduced phishing attacks in my customers' environments by training their users
Sophos should offer tests where we can emulate new attacks happening now. For example, people use traveling companies, so we could simulate a new test based on that. Sophos could update tests because we have tests for old attacks. We need new emails with new attacks, something that's happening now. Phish Threat has a lot of features that need to be improved, such as reporting. This is not just with EDR but with Sophos Central as well. For example, if we wanted to find the top ten machines that had been attacked the most last month, we could identify what the problem could be, whether it's the user or something happening with the machine. The report could say, "Last month, 20 machines were affected," maybe thanks to a virus or malware.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"There are many valuable features. It's already deployed in the cloud, and you don't have to install anything. You just upload your users to the cloud and tweak something if needed. You can whitelist some servers to work with this properly. When everything is ready, you can start using the platform and its many automated features."
"Their customizable nature allows us to create scenarios that closely resemble real-world phishing attempts, making them highly relatable to our end users."
"KnowBe4's formulas for risk reduction simply work. Being a technical company, our initial phish-prone percentage wasn't super high, but it was still around 18%. Since we have been requiring ongoing training and simulated phish testing, our average phish-prone percentage hovers in the 0 to 3% range now."
"The main thing is the overall report card. We get to tell the percentages of users who click on links and who don't click on links. We also get an overall score or risk score from them, which also helps us."
"It is simple to push tests out to a group of users."
"I find the solution's reports very valuable."
"It is easy to use."
"The solution is easy to integrate because it is on the cloud. We have been able to limit users to only accessing the Sophos platform by modifying the firewall and Sophos platform settings. The dashboard gives us detailed reports allowing us to be able to manage better."
"The most valuable features of Sophos Phish Threat are internal web filtering and security."
"The scalability is very good."
"It is very simple to install and you can do it by yourself."
"I have found the implementation process to be simple and straightforward."
 

Cons

"Enhancing the product's emotional intelligence, particularly by providing training content tailored to specific audiences, is an area for improvement."
"It can be more interactive with users. We want to put the users in different scenarios and let them make decisions. For example, instead of making users go through a video and then asking questions, it can have a video where they click on the scenarios and have to make decisions. It can maybe have something like a live simulation. It would be nice for users."
"It could be more localized for Ukrainian users. This platform is international, and it has a lot of material in different languages, but not in Ukrainian and Russian languages. There's plenty of different content updated regularly for English, French, and German users. They have a lot more information, and Ukrainian users also want more."
"The solution could be much more secure."
"The security of the solution could improve."
"The security could be simplified within the product."
"I would like to see more manager-level training that teaches what needs to be done after a phishing email attack is found."
"Sophos should offer tests where we can emulate new attacks happening now."
"The product's price is an area of concern, and it can be improved if Sophos reduces the prices by seven to nine percent, considering the current market price at which the product is offered."
"It would be great if the price was reduced."
"Sophos Phish Threat can improve by adding other languages, such as Mandarin or Cantonese to their online trainer video center, it would be helpful."
 

Pricing and Cost Advice

"I rate the product pricing as four out of ten."
"I don't know the cost, but I believe we are paying yearly. We did like a three-year or five-year contract. I am not aware of any extra costs in addition to a standard licensing fee."
"Licensing is paid on a yearly basis. You can go to the official site to check their approximate pricing. It's based on the number of users or staff. It can vary from country to country, but for Ukraine, it works as it's stated on the site."
"The pricing is very good, and some of my customers who have used other vendors say that Sophos is priced well within the market."
"There is a license required for this solution and the cost depends on the number of users."
"Licensing fees are paid annually."
"The license for the product comes with the firewall offered by Sophos, so a user need not buy it separately."
"There are monthly and annual subscriptions available to use Sophos Phish Threat. The price is reasonable."
report
Use our free recommendation engine to learn which Security Awareness Training solutions are best for your needs.
824,145 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
13%
Financial Services Firm
8%
Government
6%
Educational Organization
6%
Computer Software Company
23%
Financial Services Firm
13%
Real Estate/Law Firm
9%
Comms Service Provider
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about KnowBe4?
Their customizable nature allows us to create scenarios that closely resemble real-world phishing attempts, making them highly relatable to our end users.
What is your experience regarding pricing and costs for KnowBe4?
My advice would be to find a trusted partner and work with them. The pricing model is simple. If you have the technical staff and bandwidth, you may implement it yourself. However, if you want to g...
What needs improvement with KnowBe4?
Some more AI-driven automation for creating training and phishing testing campaigns, as well as automated reporting would help. The Phish Alert button could be improved, although it is understood t...
What do you like most about Sophos Phish Threat?
I find the solution's reports very valuable.
What needs improvement with Sophos Phish Threat?
I cannot suggest which areas in the solution need improvement since Sophos has a research and development team that updates Sophos Phish Threat, and users mostly get the upgraded firewall online. T...
What is your primary use case for Sophos Phish Threat?
The major use cases attached to the solution stem from the fact that my company caters to the needs of a lot of customers who use the solution and haven't faced any problems with it or any malware,...
 

Comparisons

 

Also Known As

No data available
Phish Threat
 

Learn More

 

Overview

 

Sample Customers

West Aurora Public School District 129
Information Not Available
Find out what your peers are saying about KnowBe4 vs. Sophos Phish Threat and other solutions. Updated: December 2024.
824,145 professionals have used our research since 2012.