KnowBe4 delivers next-generation security awareness training and testing, security consulting / penetration testing and innovative security software products addressing the needs of business owners, IT, HR, and end-users.
With new, world-class, user-friendly and effective Internet Security Awareness Training, KnowBe4 provides self-service enrollment, and both pre-and post-training phishing security tests that show the percentage of end-users that are Phish-prone. KnowBe4’s unique scheduled Phishing Security Tests keep employees on their toes, and provide instant remedial online training in case an employee falls for a simulated phishing attack.
The Internet Security Awareness Training project leader at every KnowBe4 customer gets access to user provisioning, and comprehensive pre- and post- training reporting. Every end-user gets an engaging and effective 30-35 minute training and after being trained can receive ongoing testing, with a frequency determined by you. Executives get the insight they need to maximize training ROI and track security compliance.
The KnowBe4 team has built, deployed, and supported market leading e-learning applications and has deep roots in IT Security. KnowBe4 was started and funded by Stu Sjouwerman, formerly co-founder of Sunbelt Software, developer of VIPRE Antivirus, which in 2010 was acquired by GFI Software, a portfolio company of the Insight Venture Partners Venture Capital Fund in New York and Boston.
“The adage is true that the security systems have to win every time, the attacker only has to win once.” — Dustin Dykes.
KnowBe4 Infrastructure Security
KnowBe4 is an IT security company, so our infrastructure was built from the ground up to have a secure, and fault-tolerant cloud-based infrastructure. KnowBe4 was PCI compliant from day one.
- Our Development Group consists of software engineers that have 10+ years of experience in creating secure application,
- Our servers are hardened Linux machines, any critical connections all use secure sockets layer,
- The databases are backed up daily,
- We do not store passwords in plain-text, we use a one-way hash mechanism, in which passwords cannot be retrieved even if we want to,
- Essentially, the data we store consists only of email addresses, and what this address has clicked on. No other data gets stored, and KnowBe4 has done everything to be secure, scalable and reliable.
- As the phishing tests only use standard email/web protocols, and do not include any actual malware, KnowBe4 phishing tests will not introduce any vulnerabilities into your systems.
Note: our infrastructure runs on the Amazon Web Services (AWS) cloud which has the following certifications:
“AWS has achieved ISO 27001 certification and has successfully completed multiple SAS70 Type II audits. We will continue to obtain the appropriate security certifications and conduct audits to demonstrate the security of our infrastructure and services.”
More about AWS certifications and accreditations here: http://aws.amazon.com/security/