Phishing Security Tests
Train every employee to avoid phishing attacks using Tandem
Phishing attacks are one of the top cybersecurity threats to today’s organizations.
Do your employees know how to spot phishing emails and what to do with them?
Phishing testing is a fast and practical way to train employees and reduce your exposure to data breaches.
Easily coordinate your own realistic phishing scenarios and tests.
Send simulated phishing emails and analyze the results to measure your employees’ ability to identify dangerous emails.
Create unique landing pages and email attachments for timely user education.
Send regular phishing campaigns to keep your employees alert and watching for phishing emails.
Use campaign results to monitor your training effectiveness.
Compare your phishing campaign results to other Tandem customers who used the same template or compare your overall results by campaign difficulty.
Choose from one of our phishing email templates or create a completely custom message for your simulated phishing emails.
Design custom messages in our editor or upload a real email to Tandem to use it as your template.
Use landing pages to educate your employees when they fail a simulated phishing test.
We provide customizable template pages or you can create your own unique pages. For a more difficult and realistic scenario, use a landing page with a submission form.
Effortlessly generate consistent and professional documents on the fly to share with your executive team, board of directors, auditors, and examiners.
Show each campaign and recipient results in an easy-to-read download. These customizable documents are available in Microsoft Word and Adobe PDF formats.
- Send an unlimited number of phishing emails to your employees
- Safely track landing page form submissions without storing the data entered
- Contact employees using unfamiliar or recognized email addresses
- Select groups of employees by position or team
- Schedule future campaigns
- Identify gaps in your testing with reports
- Add as many user and administrator accounts as needed
- Automatically create fake landing webpages that match existing, legitimate web pages
- License our Active Directory Connector to automate employee list maintenance
Frequently Asked Questions
Yes. Tandem contains a library of email and landing page templates. Our security and compliance experts continuously adds new templates.
None of the data submitted on the form is transmitted to our servers or stored. Tandem only tracks that a recipient submitted a form for the campaign results.
Yes. Tandem Support is available 8:00 AM – 5:00 PM (CT), Monday through Friday to answer your questions about Tandem application features.
For help with the implementation of your phishing awareness training program, check out our partners who can provide phishing test consulting.
You are also invited to attend our annual KEYS conference to connect with other users and learn from Tandem experts.
Tandem Support is pleased to offer complimentary training webinars twice a month for our customers, and recordings of those training sessions are available on-demand.
A Knowledge Base is available with articles to help you learn about Tandem. You can stay up-to-date on our latest features by subscribing to our Software Update emails.
Personal training is also available by request for an additional fee.
Yes. Tandem maintains high marks through the following testing: SSAE 18 SOC 1 Type 2, CompTIA Security Trustmark+, internal audits and assessments, quarterly penetration tests.
Security controls include:
- Secure data transmission between your browser and your servers
- Data encrypted at rest using AES-256
- User passwords are hashed and salted
- Datacenter protected by firewall and intrusion detection/prevention systems (IDS/IPS)
- Redundant Internet connections
- Multifactor authentication options
- Single Sign On (SSO) integration using SAML 2.0
- User activity log
- User access roles/restrictions
Tandem products are delivered via the Internet as Software as a Service (SaaS) applications. Tandem can be accessed from any device with a modern browser. No software installation or special equipment is required.
New features and updates are included with your annual subscription and automatically available. Each new feature is documented in our Software Updates blog.
Yes. All Tandem products are available under the same secure website. Tandem Phishing uses the same list of employees all the other Tandem products use. For example, by updating your BCP employee list you will also be updating your employee list for future phishing and vice versa.
The Tandem Active Directory Connector (ADC) add-on product is also available for purchase. Tandem ADC helps customers ensure employee information in Tandem remains in sync with data from the organization’s Active Directory.
Yes. With a single login you can manage several companies' phishing security awareness (requires a subscription for each company).