Advanced Email Security

My main use case for Mimecast Advanced Email Security involves addressing the large influx of spam emails that users experienced before its implementation. Previously, we were dropping thousands of spam emails daily, and while we tried mitigating this with Microsoft Exchange Admin Center, those measures were not sufficient. I wanted to ensure that every email entering our environment was thoroughly checked by Mimecast before being verified by Exchange Admin Center, allowing us to block numerous spam emails and create effective policies to prevent unauthorized emails.

One specific example of how Mimecast Advanced Email Security helped us was when we discovered a group of 16 to 17 users sending out data to their personal email addresses, utilizing various domains. We faced challenges tracking these incidents with Exchange Admin Center, as we could not adequately monitor attachments. With Mimecast Advanced Email Security, we implemented attachment policies that blocked emails with attachments from being sent out without approval, which significantly helped us prevent unauthorized data leaks.

The positive impact of Mimecast Advanced Email Security on our organization is evident in how it has drastically reduced spam emails and improved our data security. Thousands of spam emails, which previously flooded our environment, are now blocked, allowing us to enhance our overall data protection by restricting users from sending sensitive data to personal or third-party email domains.

While I don't have a specific percentage to share, I can confirm that we managed to cut down on spam emails by thousands. Additionally, instances of unauthorized information being sent externally were significantly reduced, and we noticed improvements in our overall data protection scores assessed by a third-party vendor.

In addition to my main use case, Mimecast Advanced Email Security offers enhanced email security management, URL protection, attachment protection, and the ability to enforce DMARC policies effectively. My experience with Mimecast Advanced Email Security has been great, and I find this tool extremely useful for both email security and URL protection.

The best features of Mimecast Advanced Email Security include the flexibility to create customizable rules for email and URL protection, along with the attachment protection feature that blocks emails solely based on having an attachment. Features such as holding emails based on DMARC or SPF scores stand out to me, as they significantly improve our email security.

Improvements for Mimecast Advanced Email Security include enhancing the user interface and accessibility, particularly regarding admin capabilities to add or modify user accounts. Streamlining this could improve overall usability and security management for users.

Reporting is another area needing improvement in Mimecast Advanced Email Security, as the reports provided are not very easy to decipher. With artificial intelligence being integrated into various tools including Mimecast Advanced Email Security, I believe there is potential to enhance functionality, enabling users to ask specific questions and retrieve concise answers instead of overwhelming data.

I choose a nine for Mimecast Advanced Email Security because improvements such as better user interface and artificial intelligence integration features would greatly enhance its usability. While no tool is perfect, these adjustments could greatly elevate Mimecast Advanced Email Security's capabilities.

I have been in my current role for over four years, but I consider my leadership experience to have started on my very first day.

In my experience, Mimecast Advanced Email Security is stable, with the only issues being occasional sign-in problems for users. However, the support team resolves these efficiently, affirming the platform's stability.

Mimecast Advanced Email Security is scalable for my organization's needs. While our user base remains around 2,200, I believe it can adapt to much larger requirements as needed, based on discussions with others managing larger organizations.

The customer support for Mimecast Advanced Email Security is excellent. Our requests are addressed promptly, and we receive thorough responses, contributing to my satisfaction with the service. I rate the customer support a 10 out of 10.

Before adopting Mimecast Advanced Email Security, we utilized Microsoft Exchange Admin Center for our email security needs, and the decision to upgrade was driven by a significant number of spam emails and security concerns related to data leaks.

Overall, my experience with pricing, setup costs, and licensing was smooth. The vendor management and team cooperation we received, post-negotiation and integration, was a 10 out of 10.

We did not evaluate many options prior to choosing Mimecast Advanced Email Security. Given our budget as a financial corporation and the recognition of Mimecast Advanced Email Security as an industry leader, we opted for it without exploring other solutions extensively.

One specific example of how Mimecast Advanced Email Security helped us was when we discovered a group of 16 to 17 users sending out data to their personal email addresses, utilizing various domains. We faced challenges tracking these incidents with Microsoft Exchange Admin Center, as we could not adequately monitor attachments. With Mimecast Advanced Email Security, we implemented attachment policies that blocked emails with attachments from being sent out without approval, which significantly helped us prevent unauthorized data leaks.

I trust the accuracy and reliability of the outputs from Mimecast Advanced Email Security completely, without question.

Mimecast Advanced Email Security is currently deployed in a fully cloud-based environment for my organization after transitioning from a hybrid cloud setup with both on-premises servers and Microsoft cloud services.

While our user base is approximately 2,200 users with just six supporting staff, I would not claim there were monetary benefits in terms of staff reductions due to Mimecast Advanced Email Security's integration, but it has notably enhanced our email security and data protection.

For those considering Mimecast Advanced Email Security, I would advise evaluating their requirements carefully. Since they are likely seeking solutions for specific issues with previous systems, it is straightforward to endorse Mimecast Advanced Email Security for its effectiveness in enhancing email security and data protection.

My confidence in the security brought by Mimecast Advanced Email Security's artificial intelligence features is high. Even though artificial intelligence is relatively new, I trust that the mechanisms in place will ensure data protection, given that Mimecast Advanced Email Security's core mission is safeguarding sensitive information in the email environment.

Mimecast Advanced Email Security is scalable for my organization's needs. While our user base remains around 2,200, I believe it can adapt to much larger requirements as needed, based on discussions with others managing larger organizations. I rate this solution a nine overall.

My main use case for Mimecast Advanced Email Security is to check the logs of inbound emails, and if something is blocked, then accordingly, I will review and provide the solution so that it will not get blocked next time.

For example, there was one external sender who was sending us an email, and that got blocked because of the DMARC policy, so I just checked the logs there to solve that issue.

Regarding my main use case, sometimes I just read the SMTP logs to check and verify if the emails are sent out successfully or if they are delivered, such as relayed to Microsoft 365 or the other mail servers successfully.

One of the best features Mimecast Advanced Email Security offers is message retraction, which I really appreciate.

What I appreciate about that method is that I know that message SMTP logs help verify if the emails are successfully relayed or not from our server to different servers, and also the message I'm talking about is specifically for retracting any emails that were wrongly delivered to the recipient mailboxes.

Mimecast Advanced Email Security positively impacts my organization by helping us to deliver any spam or malware emails, which I know can cause our users to be in danger if any emails slip from the filters.

Mimecast Advanced Email Security is all good, but if we can include AI, it will be really good.

Regarding Mimecast Advanced Email Security's AI capabilities, my thoughts on its governance and security are that security is always the first priority of Mimecast, so we basically do not share our data with the AI; we are just improving some filters.

As for the accuracy and reliability of output, I find the accuracy of Mimecast Advanced Email Security to be good.

I have been using Mimecast Advanced Email Security for five years.

I notice some emails are delivered because of that, and we are changing some DMARC policies, so accordingly, I will review on the platform and block as required.

My advice for others looking into using Mimecast Advanced Email Security is that they can strengthen their security very well if they choose to go with it. I would rate this product a 9 out of 10.

The primary use cases for Mimecast Advanced Email Security is email security, which focuses on email inspection, phishing, and impersonation detection.

Feature-wise, what we normally see as a provider is how well they are aligned with their confidentiality management like DMARC, SPF, and DKIM management. Mimecast Advanced Email Security has been doing an excellent job in that area, as well as the compliance part, including how they do email archival, legal holding, and eDiscovery. Apart from that, they also have features like awareness training and user risk scoring, which definitely helps as a provider to show the complete picture to end customers.

Regarding pricing, Mimecast Advanced Email Security will be at par with Proofpoint. They are not saying they are very cheap; they are a decently premium product in the market. The ROI discussion sometimes wins the conversations. Pricing-wise, they are slightly premium, and that is how everyone has positioned themselves in the market.

The improvement needed is not necessarily in the product itself, but rather around how other organizations have evolved. The DLP discussion is no longer limited to email; it has gone to border level with companies like Zscaler, Netskope, and Palo Alto giving the complete full-stack SASE setup. When somebody has a SASE setup, then Mimecast Advanced Email Security DLP might not even be needed at a point in time. Mimecast Advanced Email Security needs to improve in this area because they are only focusing on a particular set of problems which is on email and human risk, whereas companies that need a slightly bigger picture will look elsewhere.

The second thing is when you buy an XDR provider, they give you a complete holistic story around it, showing what has happened, which email somebody has clicked on, whether there have been any changes, and whether there is any network activity. You get a holistic picture. When pushing Mimecast Advanced Email Security to end customers, people are more often saying that they would rather buy XDR from another provider because the story when an analyst sees is complete in terms of what they see, whereas they only get an email story from Mimecast Advanced Email Security. Mimecast Advanced Email Security has to improve there. Companies like Abnormal AI cover more on UEBA and user behavior, and there are many things for Mimecast Advanced Email Security to improve in this area as well.

It is less of a technology issue; they are doing very well on email. The conversation for them to have is on how to get into a broader level or how to get a tie-up to become a broader supplier. At least from a service provider landscape, I can say that.

I have been working with Mimecast Advanced Email Security for probably three to five years.

Mimecast Advanced Email Security is a good product and is very stable.

Mimecast Advanced Email Security is definitely scalable, and we are deploying it in very large environments.

The customer service is good. Normally as a service provider, we do have our in-house support and we manage most of the things in-house, but if we need help, they are great. They are not like Microsoft, but they are great at it. They respond properly and try to help wherever they can.

The setup is straightforward.

We do in-house deployment.

The ROI is more around whether they are able to reduce the risk dramatically. The ROI which companies see should be able to justify buying Mimecast Advanced Email Security. It is acceptable. I cannot say that it is cheaper, but definitely it is on a decent side. People can buy it. It is not very costly. The ROI is decent and they can definitely invest in it.

DLP is part of most of the compliance journey for most organizations because it helps identify the PII data which normally gets sent. Sometimes you have to send it, and you have no other choice than the option of masking the data. It is this kind of a filter where you have an option to identify whether there are any passport details, customer PII data, or any source code. You have an option to hold it or encrypt it if you need to. If you still have to send it, you can encrypt and send it. You can notify your security team to check it and all that. These are features which most DLP has, and even Proofpoint has similar features.

They are being pretty happy with Mimecast Advanced Email Security. The policies are decently researched and marked. They are happy and at the same time, with some of the features, they have the option to customize. That is where service providers like us come into the picture. We help them customize few of the policies, but apart from that, they have been very strong in terms of the policies and their processes.

It will be straightforward. Since you have email security, you get a decent number of emails without phishing and BEC risk. They reduce dramatically. Email availability and business communication continue uninterrupted, so you have email continuity in your picture. Compliance, as I mentioned, the litigation hold and eDiscovery helps them maintain compliance. I have seen that being utilized by a few of our legal clients. For them, it is very useful. Data leakage is reduced; if you have an option to block something, encrypt it, mask it, or block it, you have less risk of data leakage. User security awareness is also important. They do have phishing simulation and security awareness trainings that help reduce human errors and maintain user risk scores.

The primary thing which comes when I suggest is that people mostly go for email security features. I would still recommend people to start with their DMARC analyzer. Start from there, start your authentication, get the authentication methodology right, get the process right, and then followed by taking a product like Mimecast Advanced Email Security. I have been in this field for ten years, and in Microland, I have been for three years. Overall, I would give this product a rating of eight point five.

Securing the mail communication.

Biggest benefit would be filtering everything that is either spam or a threat before reaching users mailboxes.

Filtering from threats before emails are reached mailboxes.
URL protection and sandboxing. Potentially dangerous links are open in Sandbox rather than in user's web browser further helping with potential threats.

Allow modification of potentially dangerous hyperlinks to be converted into either text or image instead of rejecting the message.

I have been dealing with Mimecast Web Security for more than five years.

Relatively stable with minimum issues. However, there were a few in the past caused a lot of headache.

From what I've seen from the MSP, it seems quite complicated to manage the configuration itself, but since I am not using the product as an admin, I can't answer it definitively.

I have not dealt directly with Mimecast Web Security's technical support; whenever we have a problem or something needs to be changed, I reach out to my MSP.

I did not purchase Mimecast Web Security through the AWS Marketplace because it goes through my MSP.

In general, I can't comment on ROI with Mimecast Web Security since I never worked without mail security application. I can't quantify the time I would need to spend on fixing issues or dealing with threats without Mimecast.

MSP in charge for setup etc. Costing seems similar to other evaluated solutions.

Mimecast was chosen by MSP who is also providing full support for us with the product. However, we as a company are evaluating various solutions which can provide better value to us either directly or indirectly via MSP. Mimecast seems to be heavy on configuration rather than using a user behaviour compared to alternatives we were presented.

We have been using Mimecast Web Security for quite a lot of years. Regarding the analytics part you asked and what metrics are most valuable for monitoring web activities in our case, we am not dealing with the monitoring; that's our MSP who does the majority of the monitoring on our behalf.

Regarding the reporting part, I have seen the original reports from Mimecast Web Security, which seem to be quite heavy in terms of information. With the MSP, we are just reviewing and discussing what is necessary. If there is a concern, that is dealt with MSP immediately rather than waiting for formal conversations. However, I think the Mimecast report is fine and easy to read.

It is hard for me to say whether the installation is easy or complex, as I wasn't involved; it was done by our MSP. I am the end customer of Mimecast Web Security, not a consultant.