I'm looking at Votiro, Proofpoint & Israel email security products
to reduce spam, emails from bad reputation IP, emails with
malicious attachments & URL.
What are the features/criteria to assess or look out for?
Esp if I'm on O365.
a) can link to SpamHaus, RBL etc to get bad reputation IP?
b) offers CDR, sandboxing?
c) can claw back malicious emails from users' mailbox once
Sandboxing completed analysis that an email or attachmt
is malicious (Proofpoint has one such product)
d) can withstand email blasting (eg: 80000/minute)
e) in the event the device has an issue, the ease / turnaround
time to disable it (without changing MX record)
f) allows us to specify IOCs (bad reputation IP obtained from
threat intelligence or specific payload's hash)
g) the ability to integrate with DLP products : is this supposed
to be a function of O356 Exchange Online or the filter
device (as usually such device will be registerd in MX):
I recall Proofpoint used to be able to integrate with a
network DLP Codegreen or am I mistaken?
h) ... help add on ...