10 Things You Need In An Email Security Service
From detecting snowshoe spam and compromised cloud accounts to providing simulated phishing attacks, sentiment analysis and oversight of east-west traffic, here are 10 things companies should look for in an email security service.
Review Of East-West Traffic
When using a cloud-based email security provider, it becomes possible to review the traffic that’s moving internally on an east-west basis, said Al Huger, Cisco Systems’ vice president of security platform and response. Lots of malware is transferred internally when it’s behind an organization’s interface, and Huger said employees are very likely to click on links they believe are from inside the company.
The inferred trust with people inside the company is very high, meaning that the likelihood of successful exploitation is much higher than for the adversary impersonating an external actor, Huger said. Data is exposed via API in cloud-based email systems, which Huger said makes it much easier for security products to examine internal traffic flow.
Monitoring internal traffic with traditional on-premises email systems would require pulling massive amounts of email from different places and reviewing them in real time, according to Huger. But the cloud-based tools offer journaling, which Huger said provides users with real-time access to all sent and received emails along with the ability to apply security controls instantaneously at very little expense.