Landmines
Six questions that flip the SoSafe deal.
One per call. Don't stack. Let the silence work.
Q1
SoSafe analytics refresh twice daily at 04:30 and 16:30 CET. If a phishing wave hits at 09:00, when does the Security Leader's dashboard see it?
Cadence – exposes batch refresh window
Q2
Which tier is the Human Risk OS at, and is it shipping today or in preview per SoSafe's own ProductDoc page?
Tier – exposes Ultimate-only 'coming soon' gating
Q3
Is the compliance content included in the tier you are quoted on, or is it on a separate add-on line item?
Compliance – exposes add-on stacking
Q4
Can the platform produce a 90-day risk trajectory at individual level today, on the licence you bought?
Persona – exposes aggregate-only reporting
Q5
When a new attack pattern emerges in the wild, what mechanism connects it to individual employee risk profiles?
Signal – exposes simulation-bound signal universe
Q6
Is the API tier-gated, and has SoSafe walked you through a Splunk or Sentinel reference integration?
Provisioning – exposes thin API surface