SoSafe - Experts & Thought Leaders

SoSafe, Europe's pioneer in security awareness training and human risk management, announced the appointment of Daniel Farkas as Chief Revenue Officer (CRO) effective immediately and Peter Grausgruber as Chief Financial Officer (CFO) effective 1 January 2026. The new hires join the executive leadership team as the company enters its next phase of growth and scale.  As CRO, Daniel Farkas will lead all revenue-generating functions, including sales, partnerships, marketing, and customer success, with a focus on deepening customer relationships. Decades of experience An accomplished go-to-market pioneer with more than two decades of experience in scaling SaaS and digital businesses, Daniel previously held senior sales and revenue leadership roles at Staffbase, where he grew the business from €20 million ARR to €130 million ARR. He also held key positions at Box and Accenture. His track record spans international markets, building and leading high-performing teams, and delivering exceptional value to customers. “SoSafe is redefining how organisations protect themselves against one of the biggest risks of our time: cyberattacks. Their human-centric approach stands out in an industry often dominated by technology-first thinking. Joining a team that combines purpose with innovation is a tremendous opportunity, and I’m eager to help SoSafe amplify its global impact,” says Daniel Farkas. Strong track record Peter Grausgruber brings a strong track record as a highly strategic scale-up CFO. At SoSafe, he will oversee financial strategy, operations, and investor relations. Peter began his career in consulting with BDO, Deloitte, and PwC, and later led transformation projects at OMV, one of Austria’s largest industrial companies. As CFO at Bitpanda, he helped to scale them to above €300 million in revenue. And as CFO at Fourthline, he played a key role in scaling both the Finance function and the wider organisation, leading them to profitability. This mix of consulting foundations, industry leadership, and scale-up experience makes him an excellent fit for SoSafe’s growth trajectory. “SoSafe is operating in the right market at exactly the right time, with a highly relevant and proven solution,” said Peter Grausgruber. “The company’s sustained, healthy growth demonstrates strong product–market fit, and I’m excited to help shape its financial strategy as we continue to scale.” Commitment to sustainable growth “Bringing Daniel and Peter on board marks an exciting milestone for SoSafe as we accelerate our global mission,” said Dr. Niklas Hellemann, CEO and Co-Founder of SoSafe. “Their leadership, experience, and shared commitment to sustainable growth perfectly complement our vision of giving people the ability and confidence to stay secure and thrive in a digital world.” 

Cybercriminals are increasingly targeting vulnerabilities outside traditional corporate networks, focusing on third-party vendors and employees' personal devices to bypass organisational defences, according to SoSafe's 2025 Cybercrime Trends Report. The comprehensive survey of 500 security professionals across nine countries reveals trends in how attackers are expanding their focus beyond direct corporate targets. Internal network security "Organisations can no longer rely solely on internal network security," says Andrew Rose, CSO at SoSafe. "Even with robust measures in place, the risk from external partners remains significant if they don't uphold the same level of protection." "The same applies to employees – when they act without security in mind outside the workplace, it creates vulnerabilities that can compromise the organisation's overall security posture." Potentially vulnerable third parties The report reveals that 93% of corps depend on third-party services to deliver their core value proposition The report reveals that 93% of organisations now depend on third-party services to deliver their core value proposition. Each additional provider introduces new dependencies, data exchanges, and potential entry points for cybercriminals. "Attackers are increasingly targeting software and service supply chains to amplify the scale and impact of their attacks – knowing these often lack the robust defences and resources of larger organisations," notes Rose. "This concentration strategy creates more opportunities for criminals, more leverage against victims, and more frequent breaches and service outages for customers." The challenge is further compounded by fourth-party risks – the vendors of an organisation's vendors – creating an extended web of exposure that many security teams find difficult to monitor effectively. Employees' personal devices SoSafe’s study reveals that cybercriminals are moving outside the traditional corporate domain, with 83% of organisations reporting their employees have fallen victim to cyberattacks on personal devices that caused security issues for the organisation. "Cybercriminals are blurring the lines between personal and professional spheres," says Niklas Hellemann, CEO of SoSafe. "While employees may be protected by their organisation's technical controls, their personal devices and accounts are often left vulnerable. They have become prime targets for attackers looking to gain access to corporate information." The message is clear: if it’s connected, it’s a threat vector. And personal is now professional. Multi-channel attack strategies Report highlights that 95% of organisations report an increase in multi-channel attacks over the past year As a related trend, the report highlights that 95% of organisations report an increase in multi-channel attacks over the past year. These sophisticated approaches can combine email, messaging apps, social media, and voice calls to create more convincing and harder-to-detect attacks. With the aid of AI technologies, these attacks have evolved into "3D phishing attacks" that seamlessly integrate multiple communication channels to manipulate trust and exploit every possible entry point. Aid of AI technologies A notable incident occurred in 2024 involving the CEO of WWP, who was targeted in a sophisticated cyberattack. Attackers used AI-driven voice cloning to impersonate the executive and deceive employees into disclosing sensitive information and transferring funds. Attackers used AI-driven voice cloning to impersonate the executive and deceive employees This case illustrates how cybercriminals are using multi-channel tactics: Leveraging WhatsApp to build trust, Microsoft Teams for ongoing interaction, and an AI-generated deepfake voice call to execute the final stage of the fraud. With the aid of AI technologies, these attacks have evolved into "3D phishing attacks" that seamlessly integrate multiple communication channels to manipulate trust and exploit every possible entry point. Identify potential threats “Multi-channel attacks are sophisticated tactics to trick users into becoming unwitting accomplices to criminal activities. To protect against these threats, organisations must provide regular, scenario-based training to their staff." "The training not only helps employees identify potential threats but also reinforces positive security behaviours, fostering a security-first culture and empowering them to service as the first line of defence for the business,” said Hellemann.

SoSafe, Europe’s largest human risk management solution, has been named a Strong Performer in a recent report evaluating top vendors. This recognition underscores SoSafe its position among top vendors and balanced approach to privacy, customer impact, and innovation.   Human Risk Management Solutions The Forrester Wave™: Human Risk Management Solutions, Q3 2024, evaluates nine vendors based on their current offering, strategy, and market presence.  According to the report, “[SoSafe] invests heavily in R&D, has a solid innovation process,” and “adheres to strict privacy-by-design principles and controls”] Forrester is a market research firm known for its in-depth analysis across industries.  Proactive, behaviour-driven solutions The report validates for SoSafe the increased importance of building lasting security awareness With the evolving threat landscape, traditional security training programmes are increasingly inadequate. Forrester's decision to recognise Human Risk Management as a distinct category reflects the growing need for proactive, behaviour-driven solutions. SoSafe believes its recognition highlights its strong performance in this emerging field. The report validates for SoSafe the increased importance of these innovative approaches to building lasting security awareness.   Commitment to innovation and privacy  “Organisations that have to balance privacy with innovation should look to SoSafe,” the Forrester report stated. This recognition adds to SoSafe's  highest possible scores across six evaluation criteria, including:  Privacy and nagging considerations  Reporting capabilities  Dashboard    GenAI for knowledge articulation (chatbots)  Psychological considerations  Innovation  Psychology-driven approach Commenting on this recognition, Niklas Hellemann, psychologist and CEO of SoSafe, remarked, “In a market where legacy players and e-mail security add-on solutions often focused on large generic video databases in order to ‘tick the box’, SoSafe’s psychology-driven approach focuses on what truly matters: sustainable behavioural change and effective risk management.”   Andrew Rose, Chief Security Officer of SoSafe, added, “We believe the findings from Forrester align closely with our mission to empower organisations around the world through personalised solutions that address the full spectrum of human risk." Data privacy "Cybercriminals increasingly target personal domains, like professional social networks and private emails, which lie outside corporate defences. That’s why platforms like SoSafe, which put employees at the centre of security, are essential in building resilient security cultures."  He further highlighted, “At the same time, we highly value data privacy. With our origins in the 'motherland of privacy,' we have built our platform with privacy-by-design principles at its core. SoSafe is now serving customers globally, but our commitment to privacy remains steadfast across all markets. We are committed to protecting individual data, fostering trust, and empowering employees to act securely – not employee monitoring.”  Innovating with a human-centric approach  The platform helps organisations manage security risks more effectively while streamlining the learning SoSafe introduced key innovations to enhance its approach to human risk management: The Human Risk OS™ offers a highly personalised experience by minimising generic training and instead offering users tailored, relevant content, powered by Generative AI. By incorporating real-time risk detection and behavioural insights, the platform helps organisations manage security risks more effectively while streamlining the learning process for end-users. As the Forrester report states, “The Human Risk OS™ aims to engage users by using positive psychology to reduce friction and drive visibility.”  Phishing Report Button and PhishFeedback system In this context, Sofie, the GenAI-enabled live assistant, plays a pivotal role by empowering users to make informed security decisions in real time, while also providing security teams with actionable insights to enhance their response capabilities. The platform also includes improvements to the Phishing Report Button and PhishFeedback system, further enabling smarter decision-making and more effective risk mitigation.  Digital self-defence Hellemann concludes, “We continue to push the boundaries of human risk management, with over 5,000 customers globally validating our bold, behaviour-driven strategy." "With this recognition from Forrester and continued customer trust, SoSafe remains committed to empowering organisations worldwide to strengthen their digital self-defence.”