The email and data security company Mimecast has collaborated with PhishMe to integrate their expansive security educational content to help organisations improve employee awareness of common email-borne attacks. The partnership aims to provide customers with enhanced cyber resilience against the latest spear-phishing, ransomware, and impersonation attacks that are plaguing organisations today.
Organisations struggle with being consistent with the security training offered to employees, if it is done at all. Recent research conducted with Vanson Bourne highlights the gap organisations need to fill relative to proper security training and email. This research also found that 39% of IT decision makers in global organisations had complete confidence they had sufficient email security training. In fact a mere 15% of respondents reported they conduct near regular security trainings – 25% reported to offer trainings every month, 32% every quarter and 13% every year. Only 36% of organisations increased employee security trainings following the high-profile cyberattacks of 2016.
PhishMe will supply their contextual educational material within the Mimecast Targeted Threat Protection cloud security service. This service includes the inspection of inbound, outbound and internal emails to help detect and fight phishing, ransomware, impersonation attempts, as well as malicious URLs and attachments. When used together, Mimecast and PhishMe will arm organisations with anti-phishing cloud security services and immersive behavioural conditioning and phishing reporting for employees.
This collaboration follows the formation of the Cyber Resilience Coalition by the companies in 2016.
“Most organisations lack both sufficient technical security controls and end-user education when it comes to identifying and stopping the latest email-borne threats,” said Ed Jennings, chief operating officer at Mimecast. The consequence is financial loss, data compromise, business interruption and reputational damage. Email security training is patchy and inconsistent and customers have requested help to serve up regular and timely security awareness training to employees for email-borne security threats. This employee awareness training is part of a cyber resilience strategy for email that spans security, business continuity, archiving and end-user empowerment.”