Back to PhishMe Home
Real World Training »
Real World Experience »
Up-to-Date Themes »
Detailed Reporting »
Solutions by Industry »
Sample Themes »
ROI »

Solutions by Industry

PhishMe provides customers the ability to enhance staff awareness and meet industry specific regulatory requirements while improving overall company security posture.

FINANCIAL SERVICES

From GLBA to FFIEC to PCI, financial institutions have a wide variety of directives intended to help improve the security of customer and company financial data. Complicating the security challenge, there is normally a wide range of risk profiles across the staff. PhishMe can help by clearly demonstrating the firm’s process for testing and training 100% of the organization about security threats on a repeated basis through the year.
  • Many of our Financial Services customers also divide their staff into groups based on risk profiles. This allows additional training for staff members that are attractive and lucrative targets for external phishers.
  • Use PhishMe’s game edition to reach you customers and staff in a more casual, but still highly effective manner.
  • Detailed trend reporting allows you to compare different groups and risk profiles over time, charting improvement.

CALL CENTERS

Consumers are constantly targeted by mass phishing campaigns as well as more elaborate spear phishing attacks. When an external attacker spoofs your brand and goes after your customer base, your call center is often the first to learn of an attack. Arming them with the knowledge to help the customer is critical.
  • PhishMe’s immersive methodology provides the experienced based learning drives key points home. Training your call center staff to be well aware of the threats helps prevent embarrassing breaches of protected data.
  • PhishMe can train Representatives responding to customer emails on the dangers of phishing scams and how to spot them. It’s critical that the staff is well trained to allow them to provide practical advice to the customer.
  • Training is targeted just to the employees that fall prey to the attack, and takes place while in their stations - avoiding having to take them off the queue for extended periods of time.

GOVERNMENT ORGANIZATIONS AND DEFENSE CONTRACTORS

From nation states to hactivists, government organizations and supporting contractors are constantly attacked through well-crafted spear phishing campaigns. Their end goals differ, but sophisticated spear phishing efforts are the preferred method of gaining initial access to your network. Federal organizations also have very clear requirements from FISMA to document IT security staff training on an annual basis. PhishMe can help meet these challenges by:
  • Progressively educating the staff on the variety and complexity of potential phishing campaigns. Frequent updates and new scenarios from the PhishMe development team keep your staff abreast of the latest ploys.
  • Using the announcement feature, administrators can also provide positive feedback to the staff members that do not fall for the scenario – further documenting 100% participation.
  • Dashboards and detailed reporting make documentation of activity painless.

UNIVERSITY

With large student populations as well as complex network infrastructures, Universities face a unique challenge in providing a safe and secure computing environment. The wide range of technical experience further complicates the situation. PhishMe has designed several programs specifically for higher education.
  • Research Licenses – designed as an affordable way to run the full suite of PhishMe capabilities across the staff and student groups, we work with our research partners to identify trends in human behavior when confronted with a phish.
  • Game Only for Students – With a standard PhishMe license for the staff, we can provision a separate Game Only license to reach out to the student population. As a full production version of the game, it is fully customizable and allows the granular reporting standard with all PhishMe scenarios.

ENERGY

As part of the nations critical infrastructure, NERC regulatory requirements require the Energy industry to maintain an update a security awareness program on an annual basis. PhishMe helps our Energy customers meet these requirements with:
  • An ability to group recipients based on the criticality of their role – allowing risk level based scenarios to be finely targeted.
  • Multiple training methods to blend practical tips as well as specific regulation driven learning objectives.
  • Complete, detailed reporting and history to provide auditable measurement and metrics.

CONSULTING TEAMS

As experienced IT security consultants, we understand the value of external assessments and testing. Our SaaS solution provides a consulting license specifically designed to help third party firms quickly perform complete analysis of a client’s phishing awareness posture. The license includes all of the PhishMe features for a 30 day period and is a cost effective way to have a highly sophisticated feature set for client delivery. Due to the nature of the PhishMe technology, we require written authorization for our consulting partners to run PhishMe against a customer environment. This authorization, much like a standard penetration testing authorization, must include the customer domains to be tested and be executed by the end client

NEXT: Sample Themes >>