We carefully assess and thoroughly test products and services before we make our final selection to ensure they are the best solution for our clients. The current anti-SPAM solution, at the time of deployment, offered the best mix of features with ease of use.Subsequently the platform was bought by another company and little development has gone into the product over the last year. This concerned us because it wasn’t staying current with the latest security threats in the ever-evolving threat landscape. Our goal was to find a product that would provide the best protection with an easy to use interface, using the same username/password that you use to login to Office 365.This would eliminate the need to remember yet another password. Secondly, we wanted email processing to occur on Australian based servers to maintain data sovereignty.
The required features we were looking for needed to include:
- Single Sign-on using your Office 365 credentials for ease of use
- E-mails processed in Australia
- SPF Hard Fail as a first line of defense
- URL Defense to protect from malicious web links
- Attachment Defense Reputation to block potential infections
- Attachment Defense Sandboxing to actually test files sent for security
- Social Media Account Protection to protect company social media accounts
- Email Encryption
We created a list of almost 20 products and compared each to our required features. After ranking them we narrowed our selection down to seven products, including the existing service. We then contacted each of the six product suppliers to obtain trials, pricing and additional technical notes.
After six months of evaluating the various solutions we are pleased to announce that ProofPoint Essentials has been selected as our new base anti-SPAM security service. ProofPoint Essentials provides Small and Medium businesses with cloud-based Email Security, Continuity, Encryption and Archiving functionality.It is used by over half the Fortune 100 companies who have very high security requirements.
Here’s a short video from ProofPoint explaining the current threats from email.
ProofPoint Essentials is available in three service levels, we recommend Advanced:
Features of ProofPoint Essentials
Anti-Virus: multi-layered anti-virus protection in the cloud using proactive heuristics to combat evolving virus threats.
SPAM Filtering: The SPAM and phishing technology efficiently analyses hundreds of attributes in every email. This advanced scanning accurately filters emails by examining envelope headers and structure, content, email sender reputation, images and more, to prevent spam emails, malware, other malicious email and attachment-based spam from reaching inboxes.
SPF Hard Fail: The Sender Policy Framework (SPF) is an email-authentication technique which is used to prevent spammers from sending email on behalf of your domain (e.g. yourdomain.com.au). Your SPF records lists ALL of your authorised mail servers. Proofpoint checks the domain in an incoming email and the IP address the email is coming from against the authorised server list for that same domain. If they don’t match the hard fail check will discard the email.
Reporting: Flexible online reporting dashboards and detailed email reporting is available with one click to give you actionable insights and more control.
Outbound Filtering: We configure your Office 365 tenant to send all outbound email to Proofpoint Essentials to ensure it is free from viruses, malware and other malicious content.
Content Filtering: This option enables organisations to use a flexible rules engine to enforce email communication policies.
Zero-Hour Outbreak: This feature instantly protects you against new, never-before-seen email threats as soon as they arise.
URL Defense: Malicious URLS are identified and removed. Other URLs found in emails are re-written. If you click one of these URLs ProofPoint Essentials checks the destination’s safety in real-time.
A frequent technique used by hackers has been to drive recipients to click on a link directing them to a website that is initially harmless but later turns malicious.
Attachment Defense: Attachment Defense helps small to mid-sized enterprises detect malicious attachments, usually by file types.
Attachment Defense Sandboxing: Sandboxing is a technique where you execute or “detonate” a suspicious file or URL is an isolated environment. Sandboxing is particularly effective at defending against zero-day (unseen before) threats which amount to dozens per day. Sandboxing provides an advanced layer of protection where unknown URL links, file types, or suspicious senders can be tested before they reach your mail server.
Email Data Loss Prevention (DLP): Use policies to block data loss and comply with regulations.
Email Encryption: Where possible we enable email encryption to reduce the potential negative impacts of data loss.
Social Media Account Protection: Advanced protection for your social media accounts by monitoring postings and profile changes, plus control the applications that can access and publish content across your social networks.This works on your company social media page, i.e. company Facebook/Twitter/LinkedIN pages.
Emergency Inbox: The Emergency Inbox lets you access email as normal if Office 365 email service should be unavailable.
Email Spooling: Email spooling and failover retains your emails in a queue until your Office 365 email service resumes. At which point the email is delivered to your inbox.
Instant Replay: With the Essentials Instant Replay feature, end users can easily replay successfully delivered emails received in the last 30-days that may have been wrongly deleted or accidentally deleted.
User Level Access: Allows each end user to access their own console. Users can manage personal email filters and spam sensitivity settings, access their personal Emergency Inbox directly and search consolidated email logs for their primary email address and all aliases. They can also search their personal email archive.
Company Admin Access: Company-level administrators can manage both the settings for the entire company and individual users separately. They can:
- Manage email filters for the business
- Set spam sensitivity for the entire business or adjust it for individual users
- Search company quarantine
- Locate messages for individuals