Powerful Email Security with Real-Time Protection
Around the world, defense agencies, governments and financial institutions rely on Clearswift’s award-winning Secure Email Gateway (SEG) to provide the highest level of protection for email, transforming it from a high-risk communication channel to one that is safe and secure.
With deep content inspection capability and powerful adaptive redaction features, it removes evasive cyber threats and prevents unwanted data breaches in real time. Working alone or alongside cloud-based email applications, such as Microsoft 365 and Google Workspace, the Secure Email Gateway is an essential security layer to maximize cybersecurity defenses.
Unparalleled Deep Content Inspection
Developed with security and performance in mind, the Secure Email Gateway provides an unparalleled level of content inspection and structural verification. A Deep Content Inspection Engine detects and analyzes the content of incoming and outgoing emails down to 50 levels. It offers true-file type detection, file structure verification and extracts sensitive data from compressed files, document body, header and footers, or embedded objects.
Game-Changing Adaptive Redaction
Rather than a stop and block approach, unique Adaptive Redaction features dynamically modify messages and content in real-time, keeping communications flowing and risk-free.
- Data Redaction - sensitive data is automatically removed from documents and images. Text in images is identified using Optical Character Recognition (OCR).
- Document and Image Sanitization – metadata, change history and properties are removed from files, including content embedded in images using steganography tools.
- Message and Structural Sanitization – URLs are rewritten before they cause harm and active code (macros, scripts and Active/X) is removed from Microsoft Office, Open Office, and PDF files.
Inbound Threat Protection
With a choice of Avira or Sophos anti-virus software engines that update every fifteen minutes, email is well protected. For additional protection against embedded Advanced Persistent Threats (APTs), ransomware, spyware, and phishing emails, these technologies are supplemented with zero-hour anti-malware features and active code detection that Message and Structural Sanitization provides.
Add additional layers of security against ransomware and targeted attacks with the next-gen Cloud Sandbox from Sophos. As messages arrive at the SEG, they are submitted for AV scanning and any content with executables will be further inspected by the sandbox. The behaviour of files detonated within the sandbox are carefully monitored for tell-tale signs of malicious software or active code. The results are then shared with the SEG where remedial actions to block, deliver, or inspect further, such as keyword search, are deployed.
Multi-Layered Spam Defences
Dual anti-spam engines reduce the amount of spam reaching the end user and the number of false positives. DMARC, SPF, and DKIM support reduces spam even further. The multi-layered spam defense mechanism achieves 99.9% detection rates. An Outlook Spam Reporter is included so that spam can be monitored, registered, and eliminated.
Outbound Data Loss
The Secure Email Gateway minimizes the risk of employees accidentally sharing confidential information and protects valuable company data that malicious insiders may try to exfiltrate.
Powerful lexical analysis and regular expression rules search messages and content for key words and phrases. When policy violations are found, sensitive data can be automatically removed, or managed by System Administrators or Line Managers.
Data loss prevention (DLP) is a key concern for organizations who need to comply with regulatory requirements, such as GDPR, HIPAA, SEC, and SOX. To save deployment time, the Secure Email Gateway includes built in compliance dictionaries and over 200 pre-defined PCI and PII tokens to simplify policy definition and deployment. The Secure Email Gateway can detect, protect, and audit structured data using Lexical Expression Qualifiers to validate sensitive information. This minimizes the number of false positives as it understands when a number might look like a customer ID number but isn’t.
Flexible and Granular Policy Control
Adaptable policies are the key to real-world deployment. If email security solutions are too restrictive, it impacts the organization’s ability to work effectively. If they are too lax, security could be compromised. Flexible and granular policy controls enable organizations to balance security with the need to continuously collaborate. Workflows permit managers to review and release emails so that better context can be applied to message management. Policies can be applied to an individual, a group (department or specific security clearance level), or the whole organization.
Some regulations require emails containing sensitive data to be encrypted. The Secure Email Gateway provides Transport Layer Security (TLS) encryption as standard with options to provide S/MIME and PGP message encryption and password protected files. Additionally, Clearswift works with technology partners to provide portal-based encryption, secure email archiving and enterprise Digital Rights Management (eDRM).