One of our customers is one of the leading providers of packaging solutions in Europe with employees in more than 20 sites in over 10 European countries. The customer provides packaging solutions for the food, pharmaceutical, cosmetic, and hygiene industries.
The company’s mission is to offer innovative, efficient, and sustainable packaging solutions tailored exactly to the requirements of its customers.
Reliability is one of the company’s core values and it has always focused on being able to deliver results to their customers when they need it. With the growing amount of sophisticated cyber attacks that have caused havoc in the manufacturing industry, our customer set out a mission to secure their employees and their production facilities.
As the company had been growing rapidly and expanding its physical presence geographically, the management and consolidation of the heterogeneous IT infrastructure were becoming increasingly complex.
An equally important part of the security puzzle is the case company’s employees. Social engineering attacks such as phishing were reaching more commonly the employees’ inboxes. The security team wanted to find a way to give the employees a sustainable way to learn how to protect themselves and the company against cyber threats.
Part of the challenge was that the customer has a distributed workforce in several countries speaking multiple different languages. This presented a large surface for attacks. The phishing attacks have also started to get more sophisticated. The security team noticed that employees were receiving attacks in their native language even the smaller regions.
The company wanted to find a solution that could provide the employees with the right training to develop the necessary skills and attitude to develop a strong cybersecurity culture. The team was looking for a solution that could personalize the training based on the location and roles of the employees. As the IT and security organization already have their hands full of integrating the growing group, they wanted a solution that could take care of the training without needing extra resources from the customer’s internal IT team.
The company decided to choose Hoxhunt as the solution is scaleable across the multiple current and future locations without creating additional load on the IT and security teams. They liked the Hoxhunt way of delivering education and improving security engagement as part of the employees’ everyday workflow. Previously, they had seen how difficult and time-consuming it can be to provide relevant training content in an engaging way.
The main objective for the customer was to make sure that the employees would be capable to detect phishing emails and would know how they need to react once they encounter threats. One of the key reasons for choosing Hoxhunt was that they liked the employee-first approach of the Hoxhunt solution. Their vision was that cybersecurity training should be positive and rewarding instead of negative and penalizing. This purpose matched well with how Hoxhunt had built the solution.
With Hoxhunt, the customer was also able to streamline the reporting process of actual threats that the employees across different locations were receiving. This gave the security team an overview based on data on how employees were responding to the simulated attacks.
Solution and Results
The customer has been using the Hoxhunt solution for the last 5 months and the results have been outstanding. The company has been able to strengthen its cybersecurity culture. They have also seen increasing engagement rates: people adopted the solution extremely well, they react and participate in the training at a much higher rate than previously with other tools or educational platforms.
The onboarding and GoLive of Hoxhunt were completed within two weeks including technical implementation and the pre-launch communication to end-users. The Hoxhunt Customer Success team worked closely with the customer’s team to support them throughout the implementation process.
The customer has been able to utilize the reporting tool that is integrated into Hoxhunt. This has given them visibility to how their users are engaging with the training, how the resilience of the organization is evolving, and what kind of real threats are being reported.
After they implemented Hoxhunt the users started reporting emails more, thus the visibility on attack types increased so that now the security team is aware of what kind of attacks are threatening the organization. With this information, they’re able to prevent and stop potential threats with the shorter response times. This saves the IT security team resources as the manual work is reduced significantly as well as it has lead to a stronger focus on threats that require immediate action.
Hoxhunt turns your employees into your strongest asset in cybersecurity. We’re relentlessly focused on empowering your employees to shield your organization as an active last line of defense. We work with multinational companies such as TomTom, Nets, and Fortum. If you want to see how we can help your company defend against phishing attacks, schedule a demo or contact us at [email protected]