Mimecast Email Security Reviews

We have a client using the Mimecast tool. We observe multiple information sensors, such as default information, mismatched data, unknown IPs, and various user activities.

They use Mimecast to monitor outbound traffic, including impersonation and mismatched data. All these activities are managed within Mimecast. Companies use Mimecast to enhance network security within their budget. For outbound communication, emails go to Mimecast, where they are scanned and delivered to the user.

We are monitoring emails that come from outside the organization. Some impersonation policies are in place, and we are tracking five different types of impersonation policies. These policies include external IP addresses, external users, reply-to mismatches, default inbound attachments, and VIP impersonation cases.

Mimecast need to ensure that the body text format is correctly handled and that images are properly embedded in the body text. Additionally, Mimecast should ensure that the system can accommodate multiple users and effectively send information to them.

We are using V7.5.0 of the solution.

One person is using this solution.

The initial setup is easy.

I have learned various aspects related to the topic. I will monitor all types of logs, including those from Mimecast, which provides information about users’ contacts, histories, and account numbers. Although multiple policies are in place, we are currently monitoring just five specific types.

Mimecast is useful. According to the premises, Mimecast is important, but the choice of tools often depends on each company’s requirements and budget. While Mimecast is a highly effective console for email protection, companies select tools based on their own budgets and needs.

It is easy for a beginner to learn. If a person understands impersonation policies and how to apply them, the process becomes straightforward. However, if someone is unfamiliar with these policies and their monitoring, it can be challenging. However, once a person is knowledgeable about impersonation policies, the process becomes much easier.

Overall, I rate the solution an eight out of ten.

We use the product for email security purposes. 

The platform's most valuable features are journaling and email archiving, effectively stopping phishing attacks.

The product's interface could be improved to be more user-friendly. 

I have been using Mimecast Email Security for only six months.

The product is stable. I rate the stability an eight. 

I rate the product scalability a ten out of ten. 

The technical support services are good. 

Positive

I previously used Microsoft for email security. We switched because Microsoft was difficult to use, especially regarding management and administration.

The initial setup was moderately complex. It took about two weeks to implement and go into production, partly due to coordination with our US team.

I rate the process a six out of ten. 

The implementation was done in-house.

The product price is moderate. I rate the pricing a five out of ten. 

Training from YouTube videos has been helpful, making Mimecast Email Security easier to use and understand. 

I rate the product an eight.

We primarily use the solution for filtering. 

The dashboard is very nice. 

It offers an easy initial setup. 

The solution has been stable. 

We can scale the product. 

Technical support is helpful.

The solution is very expensive. 

I've used the solution for a couple of years. Maybe four or five.

The solution is stable and reliable. There are no bugs or glitches, and it doesn't crash or freeze. 

This is s scalable product. If you want to expand it, you can. 

We have 100 people on the solution at this point. The users vary. Different departments use it. 

We are satisfied with the technical support. We find them to be responsive. 

Positive

We did previously use a different solution. It might have been Check Point. Once we saw the demo, we felt this solution would be a better fit, so we switched. 

The solution is very simple to set up. It's not overly complex or difficult. The deployment only takes a couple of days. 

One person can handle any maintenance requirements as needed. 

We had a third-party assist us with the initial setup process. We did not handle it completely by ourselves. 

The solution is quite pricy. We find it to be costly. 

I'm a customer and end-user.

We are using the latest version of the solution. 

I'd rate the solution eight out of ten. 

Mimecast security in general, it's a SaaS service so they have their servers; they have everything on their side and we're just quote-unquote, passing the traffic through them, the email traffic through them.

Mimecast has multiple different solutions, all linked to the email. They recently added user info security training, but we're not using that. We, however, are using the archive piece and we're currently using their security threat protection. Regarding the threat protection — that does just fine. As far as the security goes — they had a big hiccup earlier this year where they were giving a false positive to a bunch of attachments. I'm not sure what happened on their side but for one week at least we had that issue. It took them a little over a week to resolve the issue. We also had some minor incidents after that, that they resolved.

Generally speaking, other than that event, it has been good. It doesn't block a hundred percent of the security threats received, but you have a lot of options to tag or even further analyze the messages received through Mimecast, either to a third-party solution or through an endpoint solution.

Everyone uses this solution at our company, whether they know it or not because you can leave it as transparent as you want it, or as user-demanding as you want it. There are specific items that only IT uses, but in general, this solution is used by one hundred percent of the company.

Recently they added a stress threat dashboard, which basically gives you metrics on the security side. It tells you how many threat detections were found, how many users were targeted, what were the specific threats discovered slash detected. This has proven to be a great tool for our company.

The piece that is most valuable from the Mimecast standpoint will be the sandboxing feature. They have a process where whenever they receive an email with an attachment, they process the attachment through a sandbox. Depending on your configuration, this is a customer-specific configuration, you can tell it to do a bunch of things. You can block the attachment, you can create a safe version of the attachment, or you can tell it to let it go or put it in a help queue for either user moderator or administrator review. 

The detection rates are an area for improvement. The other opportunity area I see with Mimecast is that when you're searching inside of the admin console and you detect malicious emails that bypass Mimecast security: let's say you had a hundred of those messages there. Mimecast doesn't have a way to group those and submit one single report to Mimecast. You have to do one at a time which is not really very conducive — it's very time-consuming.

Those are the main two points. If they work to fully resolve those two issues, that would make this an awesome tool. I mean, it's a good tool, but it would be even better.

The main feature that will help everyone will be a different way to submit phishing or malicious emails that went through security. That would be a very good feature I would like to see in the next release.

We've been using Mimecast since 2013.

Stability-wise, I would give this solution four and a half stars out of five.

The scalability is not even an issue — it's a SaaS solution.

The challenge with the Mimecast support is that unless you do a phone call, you're going to have to wait for someone to get back to you. Sometimes, you don't have the time to just call in, unless it's a critical matter that you need to resolve right away.

In general, they rely a lot on their knowledge base, which has very good information, but there are some specific items that are not either clear on the documentation or are not covered in the documentation. On average, I would say maybe we submit a ticket to them every other month — it's not a big deal on that side.

We used to use another solution, but we switched over to Mimecast because it has higher catching rates.

The setup was very straightforward for the actual Mimecast solution. If you're talking about the specifics of the security piece, the security piece does take you some time because, by default, it might block more emails than you want it to block, or let other emails get in than you want to get in. You have to create specific rules for impersonation attachment protection. If you're using URL protection, that's another whole thing to set up. 

We took care of the deployment in-house, with no outside help.

You can be up and running in no time. You just have to update a couple of your records. It's not the getting up, it's getting it where you want it to be. It's, quote-unquote, customizing the security levels of perfection you want. That's why it takes time — It's an ongoing task. It's not something that you should set up and let go of. You have to keep adding, removing, or tweaking the settings as needed.

I can say that the recently released threat dashboard gives you an idea of how successful you are being with the solution.

The licensing costs are per-user for the product that you get with them. It varies a lot. Then you have different discount tiers depending on the size of your organization or the partner you're using. I mean, there's a lot of quoting with the Mimecast solution. 

As far as additional costs are concerned, there are some for product licenses that you also have to pay — also, the support on Mimecast, the base support doesn't include email or phone calls, I think. In other words, there is a big fee for additional support on top of the per-user cost.

Mimecast has been in the market for a long time. It's a good tool if you want to simplify your operations. It's a good tool for removing on-prem appliances that otherwise you would need to do with the protection that Mimecast provides. I would recommend that you just keep that in mind.

On a scale from one to ten, I would give this solution a rating of nine. If they corrected those two issues that I mentioned, then it would be an 11.

It is our spam filter, phishing filter, and executive impersonation filter. We have its latest version.

It does a good job for us, and its admin console is easy to use.

Their support should be improved. They are notorious for sending you to knowledge-based articles rather than actually talking to you, but that is, unfortunately, kind of becoming a trend with everything.

In terms of features, I haven't had any complaints. However, I don't like the fact they moved to a paid training subscription model. They used to have a lot of free webinars for training, but they have started to charge for them in the past year.

I have been using this solution for two years.

It is stable. We didn't have any issues.

It is scalable. It is used across our entire enterprise. We probably have about 175 people, and they range from our CEO to all the way down to our warehouse people.

They always send you a link to an article rather than call you and talk to you about the problem you're reporting.

It was pretty complex. 

We had a third party do the setup for us.

We looked at Microsoft, Proofpoint, and Mimecast.

I would advise others to take a good look at it. There are a lot of layers to it, and there are parts of Mimecast that we don't even use yet. It is pretty much a beast when it comes to email security, but just make sure you take your time and have somebody who knows how to set it up. Give enough training to your admin. I manage several different pieces, and Mimecast is one of them. It is just an ongoing thing that requires monitoring all day and looking for phishing, impersonations, and things like that. You also have to set up different policies as they come about for block centers and permitted centers. It is almost a full-time job.

I would rate Mimecast Email Security with Targeted Threat Protection an eight out of ten. I don't really have any complaints, and it does its job. 

The solution is used for banking and finance clients. 

The most valuable feature is the DMARC Analyzer. 

External security features need improvement.

I have been using Mimecast Email Security for one year. 

It is a very stable solution.

It is a scalable security solution. I have one client with 5,000 users and another with 200 users. Mostly, SMBs use this solution. It is a bit slow for enterprises.

The setup is really easy. You do not need to install it on-premises. You can install it on the cloud with any desktop. The deployment takes one hour.

The solution is expensive.

Overall, I would rate the solution an eight out of ten. 

Mimecast Email Security with Targeted Threat Protection is used for email security, including both inbound and outbound emails. It is also used for phishing detection and safeguard the oragnisation’s communication methods.

The interface of this solution is very easy to navigate and user-friendly. There is no delivery in email and other communications, making it reliable. The configuration is relatively easy.      

The feature that should be included is to remove the block on the encrypted files.

I have been using Mimecast Email Security with Targeted Threat Protection for the past 5 years.

I would rate it eight out of ten. 

I would rate it nine out of ten.

The configuration is easy to implement, hence I would rate it eight out of ten.

The deployment was fast and required no expertise. It can be easily handled by one person and the steps are very easy to follow. 

It has a good return on investment

Compared to the other products in the market, it is neither cheap but nor very expensive. I would rate it somewhere in the middle, five out of ten. 

Based on my experience, I would rate it nine out of ten. 

We use the solution for its security and archiving facilities.

The solution's most valuable features are identity protection and sandboxing.

They should make the solution's identity protection feature even better. Also, its default policies need improvement. In addition, they should improve the cookies management feature as well.

We have been using the solution for four or five years.

The solution is very stable, and I rate it as a nine.

The solution is scalable. We can add domains very quickly, but we do face issues once in a while. I rate its scalability as a nine.

The solution's technical support is quite good.

Positive

The solution's initial setup is moderately complex. It needs improvement overall. The installation takes a few hours to complete. It involves enabling features and following the required steps. I rate the process as a seven.

The solution's cost is reasonable as customers can choose the packages based on their requirements. I rate it as a seven for pricing.

The solution is simple to use; I rate it an eight. I suggest others compare it with AT&T as well.