On 29 March 2019 we further extended the capabilities of Symantec Email Security.cloud. This is part of our ongoing, and continual investment in protecting our customers from the multiple email-based risks they face – be they phishing, advanced threats (e.g. ransomware), impersonation attacks or data loss.
We are building on a market leading platform. As we have recently announced, not only were our email security gateways recognized as ‘Top Players’ in the Radicati Email Security Market Quadrant, but also we published a blog that showed our security effectiveness (as tested by independent organizations). And, just a few days ago SC Magazine made us all very proud by awarding us their “Recommended” product in their Email Security Group Test.
Continuing to invest
We’re delighted that Symantec Email Security technology has been so highly rated. We know that great product reviews don’t happen by chance, they reflect the countless hours spent on improving and extending our technology. Symantec Email Security.cloud - as a SaaS security service - undergoes many upgrades throughout the year, allowing us to make improvements to existing services or to add new capabilities. We have always understood the importance of ensuring our products are designed around their users. This is critical as our customers rely on us providing a highly practical solution. For this reason, I wanted to highlight the new capabilities that we have released to help email security administrators, and incident responders do their job more effectively.
Five new ways to make Email Security easier
1. Help Incident Responders to blacklist Indicators of Compromise
Email Security.cloud now includes an Email Indicators of Compromise (IOC) Blacklist service. The new IOC Blacklist service allows Email Threat Detection & Response (the new name for ATP:Email) customers to streamline incident response and orchestrate remediation measures. For example, customers may have information (gathered from other security email systems) that show a particular IP address, URL or file attachment is malicious or not to be trusted. Incident responders can use a RESTful API to upload indicators of compromise to create a blacklist that rapidly blocks emerging threats. IOCs are active within 1 minute of upload and can be created globally or per domain.
2. Service Configuration Health check, steering administrators to best practice policy settings
The new Service Configuration Health page assists administrators adopt our recommended best practices to protect their users and data. The Service Configuration Health tool compares details of customer’s service settings to best practice and provides recommendations for optimizing these. Customers can use this page to review services that are either fully optimized, partly optimized, or that need attention. Now, using Symantec Email Security.cloud administrators can find security settings that need attention and see the specific recommendation needed to enhance security.
3. Email Submissions tool to improve spam capture accuracy
A new self-service Email Submission tool has been added to help customers submit suspected false positive spam messages for analysis, and track the actions taken on these submissions.
To improve the workflow experience for mail administrators, the latest Email Security.cloud release also introduces a new page that groups together several tools that customers can use to submit email messages for analysis. This now allows submissions for either false positives or false negatives, the ability to review a list of all false-positive submissions, and access the Email Submission Add-in for Microsoft Outlook.
4. Enhanced Executive Summary Report
This enhancement allows customers to compare their email threat exposure with industry peers. With this report, a customer can now see the percentage of emails which they receive (classified into spam, phishing, malware or advance threats) and to compare the results with peers in related industry verticals. The screen shot below illustrates this new functionality.
5. Third-Party Domains:
A new section named Third-Party Domains has been added to the Domains page, to support customer organizations that send email on behalf of other organizations (i.e. those that offer white label email services). For example, Supplier ABC provides underwriting services for Bank XYZ, and is authorized to send emails on behalf of Bank XYZ to the bank’s customers.
By registering third-party domains in this way, this feature allows your organization to send outbound emails from the domain, but not to receive inbound emails using that domain. Continuing the example above, this means customers of Bank XYZ can’t inadvertently email Supplier ABC; emails addressed to Bank XYZ only get delivered to the bank.
Find out more - watch the webinar
These new features are already available and ready for customers to use. We will be running a webinar to showcase these features on 25 April. Register here to watch it live, or on-demand after the event.