Krantz Secure Technologies Case Study: Phinbox IQ Implementation and Results
Krantz Secure Technologies, managing 59 clients and over 2,000 users, implemented Phinbox IQ to automate phishing email analysis—transforming their previously manual, time-consuming process into a faster, more efficient workflow that reduced investigation and ticket times by providing detailed email information and reinforcing user training, resulting in significant time savings within just one week of adoption.
MSP Analyzes 200+ Reported Emails in Just 16 Hours per Month
Krantz Secure Technologies was seeking ways to increase efficiency and save time across their business. They adopted Phinbox IQ while it was still in development and had little to no expectations starting out. However, within a week of implementing the new feature, they were pleasantly surprised by the immediate results.
Their engineers completely transformed how they handle reported emails. The result was faster investigations, reduced ticket time, and better visibility into phishing activity.
Why Krantz Secure Technologies Chose Phin Security
“If someone asked me why we use Phin, it’s because they listen to the partners.”
— Chris Fisco, Director of Technical Services
Krantz Secure Technologies wasn't using any provider to automate phishing analysis and triaging when they implemented Phinbox IQ. They decided to use Phinbox IQ because it was an easy tool to adopt, and they already had a great partnership with Phin. Although they didn't expect to see any major results, as it was still a feature in development, they immediately realized massive time savings within the first week of implementing it.
Size: 59 Clients
Active users: 2,000+
Director of Technical Services: Chris Fisco
Partner Since: 2024
Previous provider: Hook Security
Evaluated providers: KnowBe4, Breach Secure Now
Challenges
- No “Report Phishing” button deployed meant users had to call Krantz every time there was a suspicious email, which is a hassle for both IT and the end-users
- Not having an automated, consistent workflow took up valuable tech time
- Lack of detailed email information in one place made investigations difficult and time-consuming
Phin's Solution
"It serves two purposes... We're hoping to reinforce the training that we want users to do, and my engineers want all the details so they don't have to collect it if somebody presses the button."
— Chris Fisco, Director of Technical Services
Phinbox IQ streamlines the phishing response process by automatically collecting detailed data when users report suspicious emails. Instead of engineers manually gathering information, everything they need is immediately available right in their ConnectWise helpdesk.
Phin reinforces user training by encouraging employees to report suspicious messages using the built-in reporting button. This creates a feedback loop where users actively contribute to security while engineers benefit from structured, actionable data.
Additionally, the integration enables cross-tenant phishing revocation with just a few clicks.
Phinbox IQ also helps uncover underlying issues, such as misconfigurations in spam filtering, by surfacing unusual patterns in reported messages. This enables the team to proactively fix problems at the source rather than repeatedly addressing symptoms.
Results
"The information that's collected saves them so much time. They can analyze it from the one ticket screen and spend five minutes finding out if it’s actually malicious."
— Chris Fisco, Director of Technical Services
Krantz was able to identify a pattern of 10 reported emails from the same user in an unusually short amount of time. This led to further investigation and they discovered that spam filtering was misconfigured. Additionally:
1 week
Krantz has saved a full week’s worth of tech time per month on analyzing and triaging reported emails. Dropping from 15 minutes to 5 minutes per email.
120+ phish
End-users are reporting 200-300 emails per month via the “Report Phishing” button, with an estimated 60-70% of those being real phishing emails. Without the “Report Phishing” button and Phinbox IQ, many of these threats could remain unresolved for too long or go completely unreported — resulting in a breach.
"It serves two purposes... We're hoping to reinforce the training that we want users to do, and my engineers want all the details so they don't have to collect it if somebody presses the button."
— Chris Fisco, Director of Technical Services, Krantz Secure Technologies
Features, Updates, or Changes Krantz Secure Technologies Wants to See
"I don't really have anything that I'd say you guys need to improve on or change. I like everything you guys are doing."
— Chris Fisco, Director of Technical Services