Case Study: Financial Institution Service Provider reduces phishing susceptibility to 2.17% in 12 months with KnowBe4

Financial Institution Service Provider - Customer Case Study

Financial Institution Service Provider struggled with limited, siloed security awareness — training was basic, infrequent, and largely confined to IT and Risk teams, while clients began requiring vendor Security Awareness Training for audits. They engaged KnowBe4 to provide an easy-to-use platform for simulated phishing tests, recorded training, and reporting (including the Kevin Mitnick Security Awareness Training), so they could evaluate risk and meet audit requirements without overburdening IT.

KnowBe4 set up baseline phishing tests, reporting, and mandatory training, and the customer tracked completions for compliance. Initial testing showed a high phish-prone rate (reported as 39% on the first test; chart averages show a baseline around 27%), but after deploying KnowBe4’s training and ongoing phishing campaigns the phish-prone rate fell to about 13% at three months and 2.17% at 12 months, with subsequent tests dropping to nearly zero — improving staff vigilance and reducing audit and IT effort.