Online security awareness training

Boxphish are a UK based provider of engaging and automated online security awareness training programmes, a proven way to develop your “Human Firewall”.

Reduce the risk of data breaches through automated training

Teach your people to be the first line of defence

Protect your organisation from financial risk

Create a culture of awareness

PROVEN SOLUTIONS

Trusted by leading brands

Why do my employees need awareness training?

Training your people is the key to keeping your organisation safe. In order to reduce your risk of becoming victim to a cyber-attack, the front line of your organisation – your employees – need to be able to identify and avoid these attacks. Our day to day working lives now expose us to a larger number of cyber threats than ever before and as a result, there are many new techniques and challenges employees need to be prepared to face and deal with.

Ranging from common cyber-attacks seen in phishing emails, to ransomware and malware attacks, email fraud and CEO fraud and even more advanced tactics like identity theft or data breaches, cybercriminals will stop at nothing to try and gain access to your device or data. If your employees are in tune to these sorts of attacks, then there are naturally far less likely to fall for one and put your organisation at risk.

INVEST IN TRAINING

Your people are the first thing a lot of customers encounter when interacting with your business, they are the thing that keeps everything ticking over from one day to the next, the most important cog in the organisations’ machine.

This is why they need to be protected and trained to be the protectors themselves too. By investing in your employees, you are investing further into your own organisation and doing your bit to help keep everything you work for, safe.

BOXPHISH

Protect your organisation by optimising your “human firewall”

You might think that there are easier or faster ways to protect your organisation than investing in a cyber security awareness training programme, and you’re probably right. But there are few that are quite as effective, both from a monetary perspective and in regard to employee engagement and satisfaction.

It’s staggering how many organisations think that a one-hour webinar twice a year is sufficient for cyber security training. The information isn’t absorbed by employees and it certainly isn’t enough to put into practise to use all year round. A proper training programme includes monthly courses, with regular tests to ensure the knowledge that is being transferred is actually being learnt and can be put into practise. This benefits both the people and the organisation as a whole so much more, with knowledge and proof that this can be put into practise when needed, in the event of a cyber-attack.

Overall, once your organisation has invested in regular cyber security training, the costs associated with cyber security tend to decrease. This is because you are spending far less money – and time – solving problems that have arisen through cyber-attacks, due to the regular training making these a far less frequent occurrence. Even if you haven’t yet fallen victim to a cyber-attack, don’t sit around and wait for it to happen. Invest in the training and use this as a preventative method, doing the right thing before it’s too late.  

Explore our latest resources

Check out our latest podcasts, webinars, articles and customer stories. Our cyber resources are designed to help you stay one step ahead with expert insights, industry trends and practical tips.

BOXPHISH

 Boxphish online security awareness training will educate and empower your employees to make better cyber decisions

Simulate cyber security threats

Test your employees via phishing simulations. Gain access to existing simulations such as Microsoft 365, HMRC, Dropbox and Deliveroo along with custom simulations specific to your staff. All data is stored so you can analyse click rates throughout the training programme and track progress.

Educate staff to spot phishing scams

Awareness is key when it comes to cyber threats to end users. Tailored learning journeys are created to address problem areas identified in the simulation testing. Training is delivered via videos, guides and quizzes which increase end users knowledge. A managed cyber security service reduces the burden on IT resources.

Analyse your employees course statistics

Automated reporting dashboards provide data driven analysis of simulation engagement, course completion rates and risk scoring on a company and individual level. Let Boxphish run your Human Risk Board Report via our managed reporting service, providing you with the data you really need to see.

INCREASING THREAT

Effective risk mitigation goes beyond technical controls

%

of businesses report having experienced some form of cyber security breach or attack​

2024 UK Government's Cyber Security Breaches Survey

%

of businesses experience attacks at least once a month

2024 UK Government's Cyber Security Breaches Survey

%

of these attacks are phishing attacks

2024 UK Government's Cyber Security Breaches Survey

%

of breaches involved a non-malicious human element, like a person falling victim to a social engineering attack

Verizon's 2024 Data Breach Investigations Report

“The Boxphish platform has helped us raise cyber awareness across our business and build a real culture of security. We issue tailored Boxphish training content monthly to all colleagues. The videos are short, punchy and relevant for work and home life and can be completed any time on any device without impacting the day job. This regular bite size training is helpful in repeating best practice messages, helping us to protect both ourselves and our company.”

Organisational Design & Development Manager
Eurocell

“Boxphish has very quickly had a brilliant impact on the security culture at the council. The content of the educational modules and simulations are really well thought out, accessible and engaging across the whole workforce, meaning they can be used very effectively right out of the box. Implementing, running and maintaining the system requires very little administration – a huge advantage for small teams with limited resources.”

Principle Information Security Officer
North Lincolnshire Council

“The training courses delivered via the Boxphish platform have been well received by our employees and we are seeing great results. Traditional training methods can be extremely long-winded, taking hours, if not days. Being able to deliver training content frequently but with minimal effort from an administration point of view has been incredibly valuable. The content is short, snappy and to the point, and this has had a positive impact on employee engagement levels and overall completion rates.”

Information Security Advisor & Data Protection Officer
Robertson

“Boxphish offer a wide range of phishing simulations ideal for educating our staff. They’re quick to setup and send, and easy to report on. Being able to identify the weaker spots within our growing Multi Academy Trust has allowed us to be really targeted with our training and we’ve seen great results so far.”

Head of IT
NPCAT

“Great product and fantastic personal service from the Boxphish team.”

Head of Information Technology
Port of Tyne

“Working with Boxphish has enabled me to efficiently deploy an automated cyber awareness programme so I can feel confident we are doing everything we can to educate our end users on the evolving cyber threats, it has been a great experience using the platform.”

IT Manager
Leicester Tigers

“Boxphish has made our transition into this market seamless, and the support from the Boxphish team from the initial contact with the customer to the onboarding has been exceptional.”

Director
Halo-IS

LEARN MORE

Online Phishing Simulation FAQs

How long does it take to implement?
We would typically advise that in order to complete technical pre-requisites around whitelisting, create your phishing and learning journeys and build your report dashboard you need around 7-10 days. The actual time required from the client is minimal, around 60 minutes to complete a 12 month cyber security training programme for your employees.
Do you have an integration to Microsoft365?
Ease of management of the ongoing user base of any SaaS application is key. Boxphish has developed a Microsoft365 integration that will handle the management of your employees meaning that you can deliver one of the best cyber security training programmes available in the market.
How regularly should the employee cyber security training be delivered?

In our view to ensure you provide the best cyber security training to your employees, the training and simulated phishing should be delivered monthly. As part of the onboarding process, you can define the regularity you would like to ensure we meet your exact requirements.

Can the courses be delivered in SCORM format?

Boxphish has created an online employee security training application that has a built in LMS. Should you be interested in delivering cyber security training to your employees via your existing Learning Management System (LMS) then a request would need to be raised with your Account Manager to ensure the SCORM files are sent to you as part of the onboarding process. Please get in touch if you would like further information about this product.

What metrics does the reporting suite show?

The Boxphish report suite is industry leading, providing our customers with insightful metrics on the following;

  1. Risk Score – Company Wide
  2. Risk Score – By Department
  3. Risk Score – by individual
  4. Heat maps showing overview of simulation
  5. Engagement by type
  6. Users enroled in cyber security training
  7. programme
  8. Course complete rates
  9. Timeline of cyber courses

Ready to transform your cyber culture? Book a demo today!