Cognitive automation enables individual learning paths that motivate people to recognize and report real attacks.
90% of breaches start with email. Focus your training where it's needed most.
Reporting email threats is fundamental to cybersecurity. The reporting rate correlates to overall risk of a breach. It is pivotal for measuring a program’s progress and effectiveness. And yet most employees lack a basic understanding of how, why, and what to report. Even if they recognize a phishing attack, they don’t know how to report it.
Reward reporting and make it easy to do! Hoxhunt’s gamified phishing training is built on hitting the Hoxhunt reporting button. This hardwires threat reporting as an instinctive behavior. In both simulated and real attacks, employees are incentivized to use a single, simple process to report suspicious emails.
Reporting threats directly impacts security posture. Hoxhunt connects the threat feed to SOC to help stop active attacks and expedite discovery and remediation of real attacks. Enables feedback cycle to the technical filters.
Failure rate is an important metric for evaluating risk-when done right! Over half the enterprise must participate actively and frequently, and the threat simulations must adapt to the user’s skill level over time. Low sample size yields an irrelevant risk assessment; while easy attacks will at best falsely satisfy an awareness program’s failure rate KPI. Such empty metrics falsely portray the organization’s true risk and resiliency.
Make the data meaningful. Our adaptive learning model is informed by 30 to 40 data points per employee per year, rather than the typical 4 to 12. Our personalized, people-based curriculum adapts to the user’s skill level over time to motivate engagement and increase awareness against all sorts of attacks. As a result, failure rate becomes directly correlated to true risk and resilience.
This one, clear metric captures the overall performance of your phishing awareness program and the email security posture of your organization. High resilience means low risk. Resilience rate is the ratio of employees reporting attacks to those failing them.
Resilience rate is a handy metric for reporting risk posture and awareness training progress over time to leadership. Resilient employees are more likely to report attacks than fall for them, and a high resilience rate means your employees will collectively protect your company even if a few are vulnerable to attacks. With Hoxhunt’s adaptive training algorithm, the resilience rate becomes more meaningful over time as individual employees are challenged with increasingly sophisticated simulations.
Behavior-changing training is a measurable way to make
a positive impact on your defences.