PhishMe is a security awareness training (SAT) solution designed to build employee resilience against phishing attacks. It focuses on training employees to recognize and report real-world phishing attacks that bypass secure email gateways (SEGs), including AI-based SEGs. The platform uses simulations of observed SEG-miss threats to train employees. For organizations starting their security awareness program, PhishMe offers an optional Learning Management System (LMS) for building core knowledge and remediation training. The platform includes PhishMe Reporter, which allows employees to report suspicious emails with a single click, turning training into active participation and generating actionable SEG-miss intelligence. This feature also provides a key performance indicator (KPI) for tracking employee resilience. PhishMe also offers risk validation through individual Employee Engagement Index scores, enabling organizations to segment user populations and take actions to reduce risk factors. PhishMe training simulations are derived from phishing threat intelligence on real-world SEG misses, reported by a global network of trained employees and vetted by ML models and expert analysts. The platform offers comprehensive content, including Computer Based Training (CBT), infographics, videos, HTML education, microlearning, quick tips, games, simulations, logic puzzles, and exercises. It also provides "Smart Suggest" to recommend templates based on an organization’s program maturity, industry, history, active threats, and SEG misses. The platform offers in-depth reporting to measure employee resilience based on simulation scenario responses and reporting of suspicious emails. An Employee Engagement Index (EEI) allows assessment of engagement and resilience down to the individual end-user.

Features (Highlights)

• Security Awareness Training Delivers simulations of real-world, observed SEG-miss threats to build employee resilience. Offers an optional Learning Management System (LMS) for foundational knowledge and remediation.
  • Builds employee resilience through real-world simulations.
  • Provides an optional LMS for foundational knowledge.
  • Focuses on threats that bypass secure email gateways.
• Malicious Email Reporting Enables employees to report suspicious emails with a single click, generating actionable SEG-miss intelligence for the SOC and providing a KPI for tracking employee resilience.
  • Allows employees to report suspicious emails easily.
  • Generates actionable intelligence for security operations centers.
  • Tracks employee resilience with a key performance indicator.
• Risk Validation Identifies and validates risk points in the training program with individual Employee Engagement Index scores. Enables segmentation of user populations and targeted actions to build resilience and reduce risk factors.
  • Identifies risk points using Employee Engagement Index scores.
  • Enables segmentation of user populations for targeted training.
  • Reduces risk factors through appropriate actions.