Skip to main content
All CollectionsGetting StartedStep 5: Analyse dashboardsRisk score calculation
How to Calculate Campaign Risk Score?
How to Calculate Campaign Risk Score?
K
Written by Karthek S
Updated over a week ago

Table of contents

  1. Phishing Campaign

  2. Phishing + Training Campaign

  3. Training Campaign

When users are added to the platform their default risk score is 100 if the risk qualification is set for EVERYONE and with time, based on their engagement with different types of campaigns /tasks, their risk score either increases or decreases.

However, we always recommend that customers should always use the challenged users option so that only the users who have received any phishing or training campaign will have a risk score of 100.

Now let us understand how the risk score changes as soon as a campaign is assigned to the users.

There are three different types of campaigns.

Phishing Campaign

Under phishing campaign the phishing readiness program allows you to create and launch custom phishing simulations to help employees become less vulnerable to malicious phishing emails. The total risk score of any Phishing campaign consists of 100%.

Formula to calculate Campaign Risk Weightage

100/ (Phishing Goal + Training Goal) = Per campaign risk weightage

For example:

If the number of Phishing Goals is 2 then the formula is:

100/2 = 50

The per-campaign risk weightage is 50.

In a Phishing campaign, once the campaign is launched the campaign weighted score is deducted from the phishing risk score of the user and then the user is evaluated based on his/her behavior.

In a Phishing campaign, there are individual points for opening an email, clicking an email, replying to an email, etc.

The phishing risk scores of the employees are calculated based on the following attributes. the calculation of the phishing risk score completely depends on the employee's behavior based on the following attributes.

  1. Email Opened: 10%

  2. Downloads an attachment and opens it: 90%

  3. Link clicked: 40%

  4. Data submitted: 50%

  5. Email replied: 90%

  6. Email reported: -10%

Note: If an employee opens the email and reports it immediately, it nullifies the 10% risk score, which increased when the email was opened.

For example:

In this case, let's assume John has received a phishing simulation. Until he does not engage with the phishing simulation, we will reduce his risk score to the weightage that is defined by your company. The moment John receives the phishing email, his phishing risk score is reduced by 50% and his current risk score is 50. And his risk score will increase depending on his behavior based on the following attributes.

  1. John opened the email

    Risk score increases by 10% out of 50 - Current risk score- 55 (50 + 5 )

  2. John downloads an attachment and opens it

    Risk score increases by 90% out of 50- Current risk score- 95 (50 + 45)

  3. John clicks on a link

    Risk score increases by 40% out of 50- Current risk score- 70 (50 + 20)

  4. John has submitted some data

    Risk score increases by 50% out of 50- Current risk score- 75 (50 + 25)

  5. John has replied to the email

    Risk score increases by 90% out of 50- Current risk score- 95 (50 + 45)

  6. John has reported the email

    In this case, the 10% risk score which increased after John opened the email is nullified, and since he reported the email, his current risk score falls back to 50%.

The phishing risk score dashboard provides an overview of which type of engagement has contributed to the company's phishing risk score.

Phishing + Training Campaign

Under the phishing + training campaign, 80% of the campaign's weightage consists of phishing and 20% of the weightage consists of training.

Note: A Phishing + Training Campaign will qualify as a part of the Phishing goal so the current campaign's weightage is 50.

Since the current campaign's weightage is 50, 80% of the campaign's weightage is 40 and 20% of the campaign's weightage is 10.

The 80% of risk score for phishing consists of the same attributes of the phishing campaign as listed below.

  1. Email opened: 10% of 40

  2. Downloads an attachment and opens it: 90% of 40

  3. Link clicked: 40% of 40

  4. Data submitted: 50% of 40

  5. Email replied: 90% of 40

  6. Email reported: -10% of 40

  7. Training passed: 20% of 50

Note: The other 20% of the risk score will reduce from the phishing risk score if the user passes the training.

For example:

In this case, let's assume Larry has received a Phishing + Training simulation, and the campaign risk weightage score of 50 is deducted from his phishing risk score of 100 so his current risk score is 50, and his risk score will increase depending on his behavior based on the following attributes.

  1. Larry opened the email

    Risk score increases by 10% out of 40- Current risk score- 54 (50 +4)

  2. Larry downloads an attachment and opens it

    Risk score increases by 90% out of 40- Current risk score- 86 (50+36)

  3. Larry clicks on a link

    In this case, If Larry clicks on the training link his risk score increases by 100 and if Larry passes the training, his risk score reduces by 20% out of 50 (50 -10). So his current risk score is now 90.

  4. Larry has submitted some data

    Risk score increases by 50% out of 40- Current risk score- 70 (50+20)

  5. Larry has replied to the email

    Risk score increases by 90% out of 40- Current risk score- 86 (50+36)

  6. Larry has reported the email

    In this case, the 10% risk score which increased by 4 after Larry opened the email is nullified since he reported the email, so his current risk score remains at 50.

  7. Larry has passed the training

    If Larry passes the training the risk score reduces by 20%

Training Campaign

Under the training campaign, the overall weightage for the training campaign is 100%.

For example:

Let's assume Tom receives a training email from his organization and the training goal is set to 1.

If Tom passes the training, the overall risk score is reduced to 0%

If Tom fails the training, the overall risk score remains at 100%

Did this answer your question?