A small group of users is responsible for the majority of security problems. Mimecast has set its sights on resolving this particular fact with its own newly announced Human Risk Management (HRM) platform.
Mimecast sees that security policies tend to fail to address different employees. Whereas one colleague is annoyed by unnecessary alerts and verification checks, another makes their own organization vulnerable in an unforeseen way by clicking the wrong link or opening a malicious file. What’s been lacking, according to Mimecast, is a cohesive solution that works preventively yet in the background.
Catching errors
Mimecast explains that the new HRM platform must be comprehensive, as opposed to the patchwork of point solutions that organizations already use. The platform runs on a central “risk engine” and is designed to detect human error within organizations. Through scores, it shows where in the workforce the greatest dangers lie.
“Our platform is centered around protecting organizations from employee mistakes and user error, aligning key defense and data controls to offer one of the most comprehensive approaches to human risk management,” said Mimecast CEO, Marc van Zadelhoff. “We provide a single solution that brings together multiple technologies – from Mimecast and dozens of partners – to help organizations protect collaboration and engage employees in risk mitigation.”
Specifically, this includes a mix of prevention tools and mitigation steps. For example, a Human Risk Dashboard detects on behalf of security teams which departments or individuals are susceptible to cyber hazards. In addition to this level of visibility, the platform analyzes attack attempts and successful attack routes. It provides insight into the frequency and severity of cyber threats so that their intended targets can be identified and informed. All of this is made possible by Mimecast Engage, which provides a standardized way to evaluate human risk, so that security teams’ judgment is not relied on alone.
Not just software
These new features complement Mimecast through its acquisition of Elevate Security. Back in January, Mimecast ensured that it was expanding its portfolio beyond email security. To confront sophisticated cybercriminals, insight into user behavior is crucial to include within security platforms. Yet the solution does not lie with software alone, Mimecast highlights. Awareness training remains essential to create the right security culture and protect otherwise susceptible colleagues without having to assess them as a risk before then.
Also read: Brand spoofing: criminals increasingly disguise themselves as local businesses