Transforming email security with the most effective cloud-based solution on the market.

Information Protection

Email is the #1 application used by your users and the data they are sending and receiving needs to be protected.

To maintain these protections, organizations need a solution that integrates Data Leak Prevention (DLP) and other email content control tools seamlessly into their environment. Organizations rely on email to conduct business, which often requires the sending and receiving of sensitive financial, medical, personal information and intellectual property – all of which must be communicated securely.

Employees generally don’t want to learn new applications and thus prefer to use their email to send and receive this information. To address this, organizations need secure communication services built directly into their email. For this, Mimecast provides automated Content Control and Data Loss Prevention (DLP) integrated into your email service to enforce your organization’s content security policies, as well as offers additional services such as Secure Messaging and Large File Send.

Careless users, compromised accounts and malicious insiders are a source of sensitive data loss via email. No matter how much employee training security teams do, employees will share sensitive information and your company’s Intellectual Property that they shouldn’t. While it is helpful to have security policies, it is increasingly important to automatically enforce these policies with security controls that inspect the content of emails and their attachments. This is exactly what Mimecast Content Control & DLP Services provide.

mimecast targeted threat protection

Email Security

With over 112 billion business email messages sent per day, email is the number one form of corporate communication. But it’s under attack from sophisticated hackers, contains valuable corporate information that must be accessible in seconds and impacts productivity when it goes down. Whether your organization is using a cloud provider, running servers on-premise or in a hybrid environment, the risks of email don’t change. Email defenses must secure the organization and employees against malicious links, attachments and payload less attacks.

Protect your organization from spam, malware and phishing attacks. Safeguard employee communication and enforce email security controls. Mimecast reduces risk with targeted threat protection, data leak prevention and more. Manage all the risks of email with Mimecast security and cyber resiliency. Get targeted threat protection, archiving and continuity – all in an integrated service.


Whether your organization runs MS Exchange, Exchange Online, G Suite or Office 365 the business risks remain the same. Protect on-premise, cloud and hybrid environments from cyber-attacks, data loss and disruption.

With millions of corporate users, Microsoft Exchange Online and Office 365 are becoming the corporate cloud standard for email. Add an additional layer of threat security over Exchange Online Protection and Advanced Threat Protection to stop ransomware, impersonation, spear-phishing and other advanced threats. Organizations running Office 365 and G Suite also must ensure sufficient protection against advanced threats, data loss and downtime. “Good enough” protection invites trouble, no matter the size of business.

Web Security

Mimecast Web Security protects against malicious web activity initiated by user action or malware and blocks business inappropriate websites based on customer-configured policies and Mimecast’s threat intelligence capabilities. Easy to deploy and manage, it gives you the technology needed to keep the web safe, delivered simply and cost-effectively.

The web is clearly a critical tool for organizations of all types and sizes, and its usage grows by the day. Unfortunately, so do the risks. Bring-your-own-device, the anytime and anywhere workplace and the unrelenting volume of activity make protecting the web an ever-evolving challenge. However, with the web being the second-most commonly used vector for cyberattacks and the top distraction for employees at work, security and visibility are essential.

Mimecast Web Security protects against malicious web activity initiated by user action or malware and blocks business-inappropriate websites based on customer-configured policies and Mimecast’s threat intelligence capabilities. Easy to deploy and manage, it gives you the technology needed to keep the web safe, delivered in the most cost-effective and least complex way possible.

Targeted Threat Protection

It used to be that secure email gateways with anti-spam and anti-virus security services were enough to keep an organization safe from email-borne attacks. Today, the stakes are much higher. Approximately 60% of inbound email is spam or contains commodity malware, stopping only this traffic will leave your organization exposed to more sophisticated and targeted attacks.

Mimecast Email Security with Targeted Threat Protection is a set of cloud services designed to provide next generation protection against advanced email-borne threats such as malicious URLs, malware, impersonation attacks, as well as internally generated threats.

URL Protection

The use of malicious URLs in email-borne spear-phishing attacks is now standard operating procedure for most cybercriminals. It is estimated that 46,000 new phishing websites are created every day, with the majority being online and active for only 4 to 8 hours. Attackers often use links in emails to bring unsuspecting users to these phishing sites.

When combined with smart, well-researched social engineering content, getting employees to click on links can lead directly to credential stealing, malware infections or the loss of sensitive data. Mimecast Targeted Threat Protection – URL Protect keeps your users and your organization safe from malicious links.

Attachment Protection

Sophisticated attackers and their malware development partners are constantly innovating to take advantage of both known and unknown vulnerabilities that exist in targeted organizations. Signature-based anti-virus systems alone cannot keep up as there are multiple techniques that malware developers use to bypass detection.

The best anti-malware strategy implements an adaptable approach and applies multiple analytic techniques to each file to filter out malicious email attachments. This is the approach Mimecast Targeted Threat Protection – Attachment Protect uses to protect organizations from malware.

Impersonation Protection

Business email compromise attacks are designed to trick key users, often in finance, into making wire transfers or other financial transactions to cyber-criminals by pretending to be the CEO or CFO. Some also target those responsible for sensitive employee data, for example, payroll information, which could be used for identity theft.

Targeted Threat Protection with Impersonation Protect detects and prevents these types of attacks. Impersonation Protect identifies combinations of key indicators in an email to determine if the content is suspicious, even in the absence of a malicious URL or attachment.

Ransomware Protection

Ransomware attacks have become increasingly popular. 78% of organizations that experienced a ransomware attack over the past year report that downtime lasted for more than one day, with three days of downtime being the average.

In the past year, 92% of organizations report that their organization has seen ransomware delivered via email attachments and nearly 30% of organizations have seen business operations impacted by ransomware. Any organization, large or small, can be the target for a ransomware attack. However, many are not ready for ransomware as they lack effective prevention, a plan for zero downtime or a process to recover quickly.

Spearfishing Protection

Phishing attackers cast a wide net in hopes of catching anyone, while spear-phishing attacks are highly targeted and customized for their intended victim. It’s crucial to protect all users as attackers aim to infiltrate your organization any way they can.

There is now a shift in emphasis from stealing information that then needs to be sold on the black market to stealing information directly from information holders themselves. The criminal organizations that are perpetrating spear-phishing attacks are generally very well funded and they have the technical resources to successfully publish new and increasingly more complex spear-fishing attacks on businesses in the United States.

Internal Email Protection

For most, inbound email-borne spear-phishing style attacks are the primary focus by IT security teams, but that doesnít sufficiently protect an organization. It is important to recognize that internal-to-internal emails as well as outbound emails are regularly used to spread threats and spam.

Most cyber attackers will use a compromised account or remote access malware to send an internal email as an internal user to spread the attack laterally to others in your organization or even outbound to external contacts. Mimecast Internal Email Protect extends Mimecast’s security controls to your organization’s internally-generated emails providing 360 degrees of email protection.

Archiving, Risk & Compliance

Information contained in email mailboxes needs to be searched quickly for compliance and ligation and be put at the fingertips of staff that need the data. And employees need to keep working despite planned or unplanned server outages. Email archiving is crucial for compliance and adherence to data retention best practices. Mimecast provides secure, perpetual storage and policy management necessary with predictable per employee pricing and the scalability of a pure cloud architecture.

Mimecast Cloud Archive has long set the industry standard for enterprise information archiving, helping to keep corporate knowledge available, protecting and preserving it while simplifying management and administration. By aggregating data across multiple platforms, organizations gain long-term business insights and create a secure, digital corporate memory while at the same time reducing costs and risks for legal and compliance teams. IT teams can reduce administrative overhead with streamlined management and simplified data recovery. Anytime, anywhere access to archive data improves employee productivity and workflow efficiency.

mimecast ransomware protection
cre sb2

Download Understanding Mimecast Cyber Resilience for Email Solution Brief

Secure Messaging

Companies and organizations need a service that enables and controls how sensitive data is delivered to external contacts via email. It needs to be simple and intuitive for both the sender and recipient, require minimal IT engagement, while remaining in your control.

Certain communications or files are so sensitive that delivering them via email using the open, public internet is unacceptable. However, employees generally want to use their email to deliver and receive all their communications and files, whether sensitive or not. They don’t want to learn another application and be forced to switch between systems to conduct business. Furthermore, employers don’t want more complexity and cost associated with more third-party services.

What organizations need is a secure messaging service built directly into their email system that provides security and control over-and-above that which is provided using traditional email encryption, such as TLS. Mimecast Secure Messaging securely delivers sensitive communications and files directly from the employees’ email client eliminating the need to use costly third-party applications and to train users on these external systems.

mimecast flow 1


Getting better control over your data is the goal in e-discovery, especially when the clock is ticking.

As a result, organizations are moving to a more proactive approach to litigation readiness. Mimecast Cloud Archive empowers IT and legal teams with self-service search, case review and legal hold tools to quickly and defensibly perform Early Case Assessments and set your case strategy earlier in the litigation process.


In today’s regulatory climate, it’s safe to say existing regulations will evolve, new ones will emerge and few will go away.

A modern approach to meeting compliance requirements safeguards your data, your people and your brand. Mimecast Cloud Archive helps you meet today’s regulatory, legal and corporate requirements quickly and accurately.

Sync and Recover

Mimecast offers a single platform for archive, recovery and business continuity.

Delivered from a single, unified platform and administration console, integrated archiving and recovery means less risk and stronger resiliency. Mimecast Sync and Recover provides simplified administration and streamlined recovery so that organizations can manage compliance archiving and data resiliency from a single Administration Console, without the need for dedicated backup and recovery solutions. Additionally, IT admins can configure recovery and search easily, to recover individual items, entire mailboxes or folders.

Awareness Training

Human error is involved in 90-95% of all security breaches.

And many of those incidents will be major. There’s about a 30% chance that you will have an incident that compromises over 10,000 records this year. Mimecast’s security awareness training platform will help you tackle human error head on, reducing employee error and lowering risk by engaging employees effectively. Mimecast Awareness Training analytics help identify employees who put your company in jeopardy.

Email Continuity

Mimecast Mailbox Continuity provides resilience by allowing employees to keep sending and receiving email in the event of an unplanned or planned outage of your company’s primary email system. Critical security and company policies remain in place to keep email safe. Mimecast works with mail solutions that are on-premises, in the cloud or hybrid.

In the event of a sudden email outage or planned downtime, Mimecast provides uninterrupted access to live and historic email and attachments from the Mimecast Cloud using everyday tools like Outlook for Windows, the web and mobile applications. Employees get guaranteed access to email – from anywhere, on any device. And administrators can monitor email flow, receive alerts and manage a continuity event all from your Mimecast Administration Console.

Large File Send

Most company IT Departments typically put restrictions on the size of files sent or received via email. However, employees need to share large files that exceed the maximum size of the sending or receiving email systems. Without a solution, employees work around these limits by using unauthorized, insecure, consumer grade file-sharing services, putting the organization’s information at risk.

The Mimecast Large File Send Service was specifically designed to address the needs of both the organization and the employee, enabling the sending of large files as part of email workflow ñ all protected by the organization’s security controls.

mimecase email archiving