Microsoft Defender for Cloud Apps (formerly Microsoft Cloud App Security) is a multimode cloud access security broker.
N/A
Mimecast Advanced Email Security
Score 8.5 out of 10
N/A
The Mimecast Secure Email Gateway is a messaging security option with anti-spam / anti-malware, data loss prevention, large file send, and other features, from UK company Mimecast.
It is well suited if your team is working with Microsoft tools and Azure services. but if you are using other cloud service providers and don't want to spend efforts in learning integration with third-party software then this is not a great fit for you. overall we are very satisfied with the product. If your corporation with Microsoft tools then I would recommend it.
Mimecast's advanced email security remains the number one security tool available for any organization. You will be ahead of the game before anything gets in and users start clicking. Users are often the ones who can disclose sensitive data and compromise the organization and its brand.
Simplicity: Once set up, Mimecast Advanced Email Security is easy to use, intuitive, and simple. This reduces onboarding time with new employees.
Robust Audit Trail: Being able to see what happened with specific emails, why things happened, and who was responsible for them helps to reduce troubleshooting time as well as improving overall email observability.
Clean Interface: Mimecast Advanced Email Security is a Swiss-Army-Knife of email security. There are many different configurations and complex rules that can be implemented. To make this manageable Mimecast Advanced Email Security has implemented a simple and clean UI. Being able to favorite commonly used features makes a huge difference in usability.
Simple SSO Integration: This seems like a no-brainer, but its odd to see how many SaaS products either don't support SSO, or make it so complicated and convoluted that setup and maintenance becomes a fully time job.
I would like to see some additional improvement around the attachment protection, specifically what may be getting caught and what types of files are attempting to be delivered via email by impersonators.
The Targeted Threat Protection is a great product, and I wish there was a dashboard for this service where we could easily see the types of emails and/or links that have been caught as part of the protection module that could be shared with executives.
Finally, I feel that the phishing protection is great and honestly don't believe there should be much improvement needed there.
There is no question as to the value of the product to the business and the disruption of changing vendors would not be worth any savings possibly achieved by switching.
The interface is pretty simple and easy to use; however, you will need to do a lot of investigative research on your own to get comfortable with it. Originally, many of the Microsoft security tools had their own seperate consoles. Overtime, they have blended into one interface which is the ideal state. In some cases it is clear Microsoft had to pick which console a certain feature or setting was going to reside in and this leads to some confusion. For example, DLP is managed through Defender for Cloud Apps but you will also need to jump into Purview. For things like reverse proxy on your M365 tenant, you will need to go into Azure and setup conditional access rules. Not a big problem and I can understand why the settings are located where they are but for someone just starting out with Defender for Cloud Apps, it will take some time to figure out.
The console is nice, but it could use some improvements for day to day activities for Admins. I find I am jumping around all over to get what I need (always searching for the right area). Being able to customize a Dashboard or having a central typical activities dashboard will be helpful to save more time.
I have not utilized actual support but the Sales and Product teams have been super helpful in moving our implementation forward and showing us the best practices.
When calling them you get best in the world customer services but as previously mentioned their online community and capabilities are a bit lacking. They want you to log into their portal to see updates on issues (vs. using a public facing service) and I rarely find the answers to my issues in electronic format. Their online presence is only helpful with the simplest of issues.
Microsoft Defender for Cloud Apps was chosen primarily due to its ability to work perfectly within our mostly M365 environment. Given that this was an added feature of our E5 license, we chose to dive into it and use it due to it's good visibility into user actions and the ability to tie all M365 actions together into one place. We did not see similar visibility with other tools that we vetted
In my opinion, Mimecast Advanced Email Security outpaces Microsoft in terms of usability and reduction of spam and phishing emails. Mimecast Advanced Email Security was cheaper than Proofpoint, but I suspect Proofpoint is doing better on staying current with trends than Mimecast Advanced Email Security. I think Abnormal offers the best incoming email security, but does not offer outgoing email data loss prevention or encryption, which is a key use cast for us.
Cloud App Security saves us thousands of dollars finding and rectifying apps security issues
Identity Security Posture helps the organization identity stay in shape, saving thousands of dollars on security consultations
The cost of suffering a breach cannot be quantified, CAS helps minimize the chances of the attackers succeeding, with excellent historical logging for most operations
