Email is in the frontline in the war on cybercrime. It is often the primary access point to the outside world and brimming with valuable data, so protecting it has never been more important.
Organizations have traditionally looked to the IT channel to support their email needs. The vast majority have been Microsoft partners selling and supporting on-premises Exchange. (Radicati data on Microsoft’s reach)
Today the cloud is heralding a new opportunity for all channel resellers to become the prime risk management partners for their customers.
This is why we’re particularly pleased to have won Security Vendor of the Year in the CRN Channel Awards 2015. Judges remarked on the powerful statistics and favourable personal testimonials from our partners.
Yet the channel market is set for more upheavals amid the race to the cloud.
Office 365 adoption is growing rapidly and we predict greater consolidation as Microsoft begins to squeeze the margins on each mailbox.
But the reality is that most organizations need a great deal of advice and support to adopt cloud services. Selling complementary cloud products, training or building additional managed services, particularly around security, are great ways to add value.
I’d also like to congratulate our partners who were also successful in the CRN awards:
MANAGED SERVICES PROVIDER OF THE YEAR
- Winner: SCC
CORPORATE VAR OF THE YEAR
- Judges’ Commended: Bytes
INDUSTRY ACHIEVEMENT AWARD
- Winner: Phil Doye, CEO, Kelway
Yet again, another vendor has given up on its commitment to its customers’ email security and archiving. Just as Webroot and Google had done previously, Intel Security recently announced the end of life of its McAfee SaaS Email Protection and Archiving service. Former MXLogic customers are left with the risk of losing their security protection if they don’t act quickly.
Meanwhile, at this week’s Symposium, Gartner's SVP & Global Head of Research Peter Sondergaard predicted that the typical technology organization will spend up to 30% of its budget on risk, security & compliance by 2017. With cyber risks on the rise, there’s never been a better time to review your long-term archiving and security strategy.
It’s fair to say that it is relatively easy to swap out a security gateway service but archiving is definitely a long-term bet. Data volumes are skyrocketing and organizations should be concerned around the cost and pain of migrating terabytes of critical data out of a defunct system in future. Short-term cost saving and poor vendor selection today could mean you’re left high and dry in years to come.
At Mimecast we have a track record of helping customers migrate away from end-of-life email services, providing on-going support and a regular stream of new products and service updates.
The Google Postini EOL announcement brought many organizations to Mimecast, at first for security but eventually customers ended up with so much more. One example is Au Bon Pain who first came to Mimecast with a security requirement but then added archiving and our email continuity service. They were so pleased, they offered to do a case study on Mimecast about their experience.
Archiving in 2015 means going beyond just storing customer emails and attachments safely. We believe that providing employees with rapid access to this critical data, wherever they are, is equally as important. Meanwhile, a host of new advanced and targeted email threats need to be kept at bay.
Securing email and archiving means making a long-term commitment. We take that very seriously indeed and it is our business – nothing distracts us from that. Whether your primary emails are on-premises or in the cloud, you need to carefully evaluate your options today and determine who’s best placed for the future.
The future of archiving is in the cloud and I believe on-premises storage is in rapid decline. And innovation here goes way beyond just providing safe, affordable storage.
“Archiving as a service (aka cloud archiving) has rapidly surpassed on-premises archiving as the preferred deployment model for most organizations”, stated the analyst firm, who also positioned Mimecast in the ‘Leaders’ section of the report.
As a cloud-only company we are at the forefront of this move and innovation. Our data centers around the world together store over 100 billion emails and more than 13 petabytes of customer data – and this is growing rapidly every month.
We have invested considerable time and effort into leading the industry in email and data archiving technology, and doing this completely in the cloud. Unlike many of our on-premises or hosted archiving competitors, we designed and built a cloud service able to scale to meet the storage, protection and data sovereignty requirements of customers of all sizes, not just those bigger enterprises with deep pockets.
Being a leader here means going beyond just storing customer data safely. We believe providing access to this critical data is equally as important. This helps employees at our customers to access their archive, resurface emails and information to help make them more productive.
Our cloud infrastructure and search technologies mean we can store huge volumes of live and legacy archive data, which grows with the customer every day, and make it available for e-discovery. This is also why we’re confident to offer an end-user search SLA of seven seconds. In fact, our current average search time is much lower. And our mobile and desktop apps mean that employees can access their whole ‘active’ archive from their device of choice – even on the move – smartphone, tablet or desktop. And no need to go to the IT team to do it either.
If you’d like to hear more about our approach to archiving in the cloud or grab a copy of Gartner’s report on us – just click on the image in this post.
When conversations about technology come up between the IT security pros working on the ground and company executives, there's often a massive disconnect – neither party knows how to fluently speak the others’ language.
The IT administrator will talk about the benefits of a particular technology – its features and requirements – but all the C-suite really wants to know is how that technology stops bad things happening and affects the management of risk that could impact the business.
This has been a problem for years. Gartner VP and Fellow Ken McGee, who interviewed thousands of C-suite executives as part of a study, concluded that IT pros and executives aren’t on the same page. He compared the disconnect to carbon dioxide, in that it's "odorless, colorless and killing [his] clients." It’s a problem that many organizations don’t know exists. What's really striking about this disconnect is that now, the stakes for collaboration between both parties have actually never been higher, yet we still can’t see the problem.
It’s been pointed out that as soon as Target CEO Gregg Steinhafel resigned following the company’s historic data breach, the relationship between all CEOs and IT, particularly CIOs, forever changed. It showed that CEOs and CIOs are now duly responsible for devising an IT strategy, and both will endure backlash if something goes wrong. As one executive recruiter told the Wall Street Journal, "Boards expect that CEOs will no longer keep CIOs at arm’s length and say ‘I’ve got somebody who does that'."
With that in mind, here is some advice to help IT pros on the ground and the C-suite start to speak the same language, specifically as it relates to email security:
To the IT Team: Avoid 'Bottom-Up' Warnings
Gartner's Chief of Research, Risk and Security Paul Proctor says that many IT security pros get into trouble when they're so focused on the granular elements of security – what upgrades may need to be made, what security failures they need to avoid – that they fail to see the big picture and the actual impact on the business as a whole.
As Proctor describes it, this "bottom-up" form of communication might start with a security officer telling a CEO something like, "If we don't patch vulnerabilities, then that's going to be bad for business." From the CEO’s perspective, what this statement doesn't do is frame the importance of patching within the larger context of the business. It fails to connect that best practice and its actual impact on the bottom line.
When it comes to email security specifically, perhaps instead of just urging a CEO to adopt Targeted Threat Protection and multi-layered malware protection, an IT security pro may want to explain that 91 percent of all hacks begin with email-based phishing, and then mention specific consequences of a breach – the costs associated with detection and clean-up, further breach mitigation, notification of customers and clients, reimbursements for damages, and the long-term reputation damage.
That’s the type of big-picture language that will be better understood by the CEO and C-suite.
To the CEO and Board Members: Look Beyond IT and Build a Culture of Security
Whenever there's a security failure, it's natural for the CEO to assign blame to the IT team, the staff members closest to the breach. The problem is that successful attacks can originate from plenty of other sources outside of the IT department.
It's up to senior management to ensure that security becomes entrenched in the culture of the company and isn’t solely the responsibility of IT. The IT team may operate the email security tools, but the burden of prevention ought to be shared by all.
Cyber-criminals are more sophisticated than ever – they look for, and are often able to exploit, any weakness. If IT and the executive aren’t speaking a common language, it makes cyber-criminals’ efforts to detect vulnerabilities that much easier. By presenting a united front, businesses are better able to keep the organization safe.
To learn more about email security, please view our on-demand webinar, “The Human Firewall: Strengthening Human Security.”