Comprehensive Protection against latest Email Borne Threats
Email is the number 1 threat vector for organizations, an entry point for a maximum number of cyber threats. Attackers are constantly working on different techniques to access important files, credentials, or sensitive data. Advanced Email Security is more important than ever.
Cisco Email Advanced Threat Protection (ATP) provides the best in class email security against cyber threats. It is a comprehensive and cloud-native email security solution that protects your organization from
-
Business Email Compromise (BEC) attacks, Spoofing, Phishing, Zero-day attacks, Malware, Ransomware, and much more.
-
Cisco Email ATP scans inbound/outbound emails and protects against potentially dangerous attachments.
-
A robust email data loss prevention and email content encryption capabilities to secure important data and protect outbound emails.
Cisco IronPort Email Security ATP
Logix offers Cisco IronPort Email Security Advanced Threat Protection (ATP) as a service to protect your business and users from any form of email threats reaching your inbox.
A dedicated Cisco Email Advanced Threat Protection (ATP) hosted and supported by Logix at its multiple Datacenters present in India. The setup assists you with logging, reporting, and also place stringent threat policies according to your organization’s need.
Bundled Services: DMARC & Bulk Mail
As a value addition, Logix has bundled DMARC & Bulk Mail services with the Cisco Email ATP to create a comprehensive offering, it helps you maximize brand protection and improve email deliverability.
DMARC
Bulk Mail
This feature has been bundled along with Cisco Email ATP to facilitate users to send bulk mails (mail containing similar content to multiple external domain recipients). Cisco Email automatically detects these bulk emails and routes them via our Logix Volume Mail SMTP gateways thereby avoiding IP throttling or blacklisting of the designated normal Cisco Email Gateways.
Cisco Email Security Features
With the substantial enhancement, Cisco Email ATP uses Cisco Talos intelligence and Machine learning to quickly identify threats and take the required actions.
Business Email Compromise
- Cisco Email ATP provides BEC detection capabilities using real-time behaviour analysis and advance machine learning to prevent breaches and provide enhanced protection to prevent against CEO fraud/ Whaling like attacks.
- Behaviour Analysis – Advanced Malware Protection (Sandboxing)AMP analyzes emails for threats such as zero-day exploits hidden in malicious attachments.
- It gives you advanced protection against spear phishing, ransomware, and other sophisticated attacks.
- AMP continues to watch, analyze, and record its activity, regardless of the file’s disposition.
URL Rewriting
- The URL Filtering service “rewrites” and performs checks on certain URLs in emails that are delivered to your organization’s end users.
- The process of rewriting allows the service to manage access to the URL to ensure the destination is innocuous.
- Any URL that is rewritten is checked every time end-user clicks on it, to ensure the URL destination is not hosting malware, phishing, or spam threats.
- Detection is available based on URL reputation & URL category.
Domain Fraud Detection
- Cousin Domain – A security feature to identify cousin domain spoofing instances for the domain name which could be easily misspelt to make it look like the authorized/original domain.
- Domain Age – It will also identify for lookalike domains which are registered recently and are trying to launch an attack.
- Domain Reputation – provides a reputation verdict for email messages based on a sender’s domain
Safe Print
- It provides a safe view (safe-printed PDF version) of a message attachment (Microsoft Documents) detected as malicious or suspicious.
- The safe view of the message attachment is delivered to the end-user and the original attachment is stripped from the message.
- The ability to safe print message attachments in the email gateway helps an organization to Prevent message attachments with malicious or suspicious content from entering an organization network.
Email Data Loss Prevention
Cisco advanced security ensures it controls, monitors, detect, and block the unauthorized flow of information from the organization.
User registration
Seamless Integration using On-premise Active Directory / LDAP / SMTP Call-Ahead & Azure Active Directory Domain Services (AD DS)
Reports
Get insight discovery and customize reports to track messages, view quarantine information.
- Cisco Email ATP provides BEC detection capabilities using real-time behaviour analysis and advance machine learning to prevent breaches and provide enhanced protection to prevent against CEO fraud/ Whaling like attacks.
- Behaviour Analysis – Advanced Malware Protection (Sandboxing) AMP analyzes emails for threats such as zero-day exploits hidden in malicious attachments.
- It gives you advanced protection against spear phishing, ransomware, and other sophisticated attacks.
- AMP continues to watch, analyze, and record its activity, regardless of the file’s disposition.
- The URL Filtering service “rewrites” and performs checks on certain URLs in emails that are delivered to your organization’s end users.
- The process of rewriting allows the service to manage access to the URL to ensure the destination is innocuous.
- Any URL that is rewritten is checked every time end-user clicks on it, to ensure the URL destination is not hosting malware, phishing, or spam threats.
- Detection is available based on URL reputation & URL category.
- Cousin Domain – A security feature to identify cousin domain spoofing instances for the domain name which could be easily misspelt to make it look like the authorized/original domain.
- Domain Age – It will also identify for lookalike domains which are registered recently and are trying to launch an attack.
- Domain Reputation – provides a reputation verdict for email messages based on a sender’s domain.
- It provides a safe view (safe-printed PDF version) of a message attachment (Microsoft Documents) detected as malicious or suspicious.
- The safe view of the message attachment is delivered to the end-user and the original attachment is stripped from the message.
- The ability to safe print message attachments in the email gateway helps an organization to Prevent message attachments with malicious or suspicious content from entering an organization network.
- Cisco advanced security ensures it controls, monitors, detect, and block the unauthorized flow of information from the organization
- Seamless Integration using On-premise Active Directory / LDAP / SMTP Call-Ahead & Azure Active Directory Domain Services (AD DS)
- Get insight discovery and customize reports to track messages, view quarantine information.
Robust Security: Outbound Message Control
Cisco Email Security ATP control outbound messages through Data Loss Prevention (DLP) & Email Encryption. This is an optional feature to ensures that your most important messages comply with industry standards and are protected in transit.
Data Loss Prevention
Email Encryption
Talk to our experts
Comparison of Cisco Email ATP with other brands
Talos: Access to the world’s largest threat database at no additional fee
External threat feeds (STIX and TAXII)
Cross-enterprise threat investigation and response
Advanced phishing protection
Domain protection
Web interaction tracking
Scanning URLs in attachments
Shortened URL scanning
Anti-phishing, malicious URL detection and AMP (in base offering)
DMARC
Bulk Mail
DMARC, DKIM, and SPF analysis
Sender domain reputation filtering
DNS-based authentication of named entities (DANE)
File retrospection
Retrospective message remediation in a cloud-based service
Macro and file-type filtering
Data loss prevention policy solution integrated into email gateway
Sender control of encrypted envelopes via sender portal
Dedicated cloud instance service per customer with dedicated IP addresses
Dedicated Office 365 and hybrid solution
Redundant secure email gateways in different data centers for each customer
Comparison of Cisco Email ATP with other brands
Cisco Email Security |
Microsoft Exchange Online Protection (E3 - E5) |
FireEye Cloud Email Security |
Symantec Cloud Email Security |
Talos: Access to the world's largest threat database at no additional fee |
|
|
|
|
External threat feeds (STIX and TAXII) |
|
STIX and TAXII not available for customer implementation. |
|
Limited Only if SEG is licensed to participate in Integrated Cyber Defense Exchange. |
Cross-enterprise threat investigation and response |
|
Limited Only for cloud-based forensics available with E5 licensing. |
|
Limited Symantec Deep Insight is a separate subscription service with restrictions on usage link |
Advanced phishing protection |
|
|
|
|
Domain protection |
|
|
|
Limited Email Fraud Protection does not offer the same level of service. |
Web interaction tracking |
|
|
|
|
Scanning URLs in attachments |
|
Limited No scanning for non-Microsoft documents. |
|
|
Shortened URL scanning |
|
|
|
|
Anti-phishing, malicious URL detection and AMP (in base offering) |
|
|
|
|
DMARC |
|
|
|
|
Bulk Mail |
|
|
|
|
DMARC, DKIM, and SPF analysis |
|
|
|
|
Sender domain reputation filtering |
|
|
|
Symantec only offers Ironport HAT-like functionality. |
DNS-based authentication of named entities (DANE) |
|
|
|
|
File retrospection |
|
|
|
|
Retrospective message remediation in a cloud-based service |
|
|
|
|
Macro and file-type filtering |
|
|
|
|
Data loss prevention policy solution integrated into email gateway |
|
|
Limited No DLP templates, only REGEX. |
|
Sender control of encrypted envelopes via sender portal |
|
|
|
|
Dedicated cloud instance service per customer with dedicated IP addresses |
|
|
|
|
Dedicated Office 365 and hybrid solution |
|
N/A |
|
|
Redundant secure email gateways in different data centers for each customer |
|
|
|
|
Vendors that provide user awareness training |
|
|
|
Limited No simulated phishing of employees. Only a CBT system. |