Email Protection/DLP - not the first thing in mind when purchasing Proofpoint
May 07, 2020
Email Protection/DLP - not the first thing in mind when purchasing Proofpoint
Score 5 out of 10
Vetted Review
Verified User
Overall Satisfaction with Proofpoint Email Protection
It is being used by Email and Security teams to protect both our on premise and cloud-based email. We use email protection, TAP, and TRAP. We monitor and encrypt outgoing sensitive data through DLP capabilities and detect and block incoming phishing and malware.
- Ability to create logical and detailed DLP rules.
- Ability to encrypt or block based on rules.
- Integration with Active Directory works as expected.
- Manual Report exports are very limited in row size.
- There is no search feature for AD groups and users within DLP rule creation.
- Each email can only be part of one folder, so it can only trigger one monitoring rule.
- Because of #3, we have to order rule priority. This has to be done in a very manual way with upward and downward arrows. They cannot be ordered by typing in numbers. The page refreshes and goes to the top with every arrow click, and it's pretty slow to update each time.
- The User Interface is pretty lacking visually.
- We have to create a rule in both Email Protection and Information Protection to use Active Directory groups in the rule.
- It allows us to monitor user behavior in relation to data tags.
- It allows us to report to stakeholders when there is suspicious movement of sensitive data.
- It allows us to encrypt or block emails using very specific criteria.
We use Symantec DLP for our on-premise protection of endpoints and network traffic. We used to use it for email, but switched to Proofpoint due to the entire business deciding to move to it. We are just one of multiple teams using Proofpoint. I believe Proofpoint was decided upon either for its threat detection functionality or its price. We didn't want to purchase Symantec CASB or cloud email protection.
Symantec would have been easier for us to continue using because then we could have it in the same console as most of our other DLP rules. I also prefer Symantec's UI and the ability to trigger more than one monitoring rule per email. Proofpoint does seem to have an advantage over using the Symantec DLP agent because there is no load on the PC relating to email monitoring anymore. Email protection is done now at the server.
Symantec would have been easier for us to continue using because then we could have it in the same console as most of our other DLP rules. I also prefer Symantec's UI and the ability to trigger more than one monitoring rule per email. Proofpoint does seem to have an advantage over using the Symantec DLP agent because there is no load on the PC relating to email monitoring anymore. Email protection is done now at the server.
Do you think Proofpoint Email Protection delivers good value for the price?
Not sure
Are you happy with Proofpoint Email Protection's feature set?
Yes
Did Proofpoint Email Protection live up to sales and marketing promises?
I wasn't involved with the selection/purchase process
Did implementation of Proofpoint Email Protection go as expected?
I wasn't involved with the implementation phase
Would you buy Proofpoint Email Protection again?
Yes