Tag: SafeSysMail

26 Sep 2019
2019 Threat Outlook

2019 Threat Outlook – Business Email Compromise Continues to Threaten Banks and Credit Unions

2019 Threat Outlook

Today, cybersecurity threats are ubiquitous. Cyber attackers are infiltrating email systems, computer networks and anywhere else they can find weaknesses to exploit. They’re using a variety of schemes to steal data, money and other assets—and tarnish corporate reputations.

Financial institutions are prime targets for cyber criminals, which is why cybersecurity must be a top priority. In 2018 alone, more than 500 security incidents affected financial and insurance organizations—with almost 25 percent having confirmed data disclosure, according to the Verizon Data Breach Investigations Report.

In addition, the costs to remedy the damage from cybercrime is higher than ever, and still growing. Now, the average cost of cybercrime for an organization is $13.0 million, up from $1.4 million in 2017, according to Accenture’s 2019 Cost of Cybercrime Study.

The Rise of Business Email Compromise

New call-to-actionTop IT Areas Where CEOs Should Focus to Enhance Cybersecurity Posture  Get a Copy

Not only are cyber threats rampant, but they’re becoming more devious and complex. For example, business email compromise (BEC) is one of the top threat vectors for 2019. BEC is a sophisticated type of phishing scam that’s perpetrated through five main scenarios, according to the FBI’s Internet Crime Complaint Center (IC3). Often, BEC scammers pretend to be a foreign supplier and attempt to trick employees into wiring funds for outstanding invoices into their bank account. In another common BEC scam, attackers impersonate a high-level executive, such as a CIO, CEO, or CFO, to try to deceive employees into wiring money.

However, BEC doesn’t always entail requesting wire transfers. More recently, BEC has involved data theft—the receipt of fraudulent emails asking for either wage or tax statement forms or a company list of personally identifiable information (PII). Regardless of the scenario, the business executive’s email is compromised, either by hacking (normally through a personal email account) or spoofing (altering the sender’s information to mimic a legitimate email request).

Like other cybercrimes, BEC continues to evolve and is rapidly expanding. The scam has been reported by victims in all 50 states and in 100 countries, according to IC3. Many BEC complaints have involved businesses and associated personnel using open source email accounts; the phrases “code to admin expenses” or “urgent wire transfer;” requested dollar amounts that are similar to normal business transaction amounts; and IP addresses that frequently trace back to free domain registrars.

Strengthen Cybersecurity Processes

Financial institutions and other organizations can protect themselves from BEC by implementing robust internal prevention techniques at all levels, particularly with front-line employees who are more likely to receive initial phishing emails. Some institutions are reducing BEC-related fraud by simply holding customer requests for international wire transfers for an additional time period to verify the legitimacy of the request. Other IC3-recommended strategies for strengthening bank cybersecurity against BEC include:

  • Avoid free web-based e-mail accounts;
  • Be careful about what is posted to social media and company websites (especially job duties/descriptions, hierarchal information, and out of office details);
  • Be suspicious of requests for secrecy or pressure to take action quickly;
  • Consider using additional IT and bank cybersecurity procedures, including a two-step verification process;
  • Beware of sudden changes in business practices, such as being asked to contact a business associate through a personal email instead of company email address; and
  • Provide security awareness training to all employees.

Regardless of the threat outlook for BEC and other cyber-attacks, financial institutions must have effective tactics for safeguarding their customer information, infrastructure and operations. This necessitates meeting regulatory and industry compliance standards for collecting, protecting and using private financial data.

To gain more insight into this area, as well as other key topics for CEOs to be aware of, download our white paper, Top IT Areas Where CEOs of Financial Institutions Should Focus: Important Questions and Answers.

 
 
27 Jun 2019
Migrating Email to the Cloud

Migrating Email to the Cloud – How Financial Institutions Can Leverage Microsoft O365 for Efficient Business Email

Migrating Email to the Cloud

Many financial institutions are finding the Cloud to be very appealing for their business objectives. Migrating server workloads and applications to the cloud provides many benefits for banks and credit unions alike, but it can also seem overwhelming to some who are introducing cloud services to their organizations for the first time. Today, many banks and credit unions are taking the first step of moving or looking to move their email hosting services to the cloud. Traditionally, email services have been hosted on-premises, but now financial institutions can take advantage of hosted email solutions to simplify email management and make processes more efficient for the entire organization.

Cloud hosted solutions, such as Microsoft O365, can dramatically simplify business email management by eliminating the need for manual intervention and management which enables the IT staff to focus on more revenue-generating tasks. In addition, the experience for end-users is essentially the same, creating a seamless transition for the institution.

In addition to increased efficiencies, there are other key advantages of moving email to the cloud such as:

  • A secure email environment – the cloud is a secure environment for data storage.
  • Reduced costs – there is no need to purchase and maintain costly servers.
  • Reduced manual intervention – with cloud solutions, bank staff no longer needs to manage the email network including email migrations, upgrades, backups, and general maintenance.
  • High reliability and availability – cloud-based solutions have redundant systems to ensure email services are consistent and run properly every day.
  • Built-in backups and archiving – cloud-based solutions automatically perform backups and archive tasks. The backups are also stored off-site, which is an important aspect of any disaster recovery plan.
  • Ability to access email from anywhere – cloud-based email solutions can always be accessed, from any location, using any device, improving the productivity of employees.

Not all cloud-based email solutions are created equal

Community Banking and Hosted EmailView Community Banking & Hosted Email infographic

Financial institutions require an industry-specific email solution that adheres to strict cybersecurity regulations to remain in compliance with regulatory guidance and expectations.

In addition, community banks and credit unions place increased importance on the availability, uptime and security of their email solutions. Some aspects of a cloud-based email solution that banks and credit unions should consider include:

  • Ability to meet strict cybersecurity regulations
  • Can create customized reports for regulators (e.g., compliance, user, and encryption)
  • Reliable up-time and redundancy
  • Unique layers of security, SPAM filtering, antivirus, and on-demand encryption
  • Multifactor authentication

To eliminate some of the unnecessary headaches and costs associated with system implementations, management, redundancy, security, and recoverability of email solutions, we developed SafeSysMail, powered by Microsoft O365, that includes SPAM filtering, antivirus, and on-demand encryption designed specifically for community banks and credit unions. To increase security layers, SafeSysMail also provides the option to turn on multifactor authentication which requires more than one method of authentication to verify a user’s identity to log into the system. This helps prevent cybercriminals from gaining access to accounts even if a password or security answer is compromised. This fully compliant, hosted email solution is ideal for any institution that wants to eliminate the burden of running Microsoft Exchange internally. Essentially, SafeSysMail can help institutions ease into the Cloud while simplifying email management and maximizing productivity.

18 Apr 2019
Email Account Takeover: How Multifactor Authentication Can Prevent It

Email Account Takeover How: Multifactor Authentication Can Prevent It

Email Account Takeover: How Multifactor Authentication Can Prevent It

Email Account Takeover is one of the most profitable cybersecurity threats for criminals and as a result, has become increasingly common. In fact, according to Agari, email account takeover has seen a 126 percent increase month-to-month since the beginning of 2018. Agari also indicates that 44 percent of businesses reported being victims of targeted email attacks. Regardless of the type of email system, whether it is hosted in-house or in the most robust cloud solution available, the level of vulnerability and ease in which a user can fall victim to this threat tend to remain consistent.

As one might suspect, passwords are often the weakest link in email security. They are usually obtained through traditional means such as social engineering, malware, buying passwords off the deep web, or users simply reusing the same passwords for different sites or applications. Once passwords are compromised, hackers then use that opportunity to watch and monitor email usage to determine and ultimately target the best ways to profit from this access. This happens by emailing malware from a known user account within a legitimate contact list; a payment request for seemingly business-related items or services; or a request for another user’s passwords. Unfortunately, criminals are displaying endless levels of creativity in executing their fraudulent activity.

The Impact of Email Account Takeover

Email account takeover attacks are particularly dangerous (and very effective) because they often originate through emails from trusted senders. Because there is a pre-existing trust relationship with the sender, the attack is then more likely to succeed. In addition, since the attack originates from a legitimate account, it often goes undetected by traditional security controls.

When email account takeover attempts are successful, not only are the user and the organization directly impacted, but the losses and hardships extend far beyond those tied to that individual account. Account takeover puts a significant strain on customer and member relationships and can result in long-term damage to a financial institution’s brand and reputation.

Imagine an email with malware imbedded was sent to all of your customers or business partners. This has the potential to infect hundreds of customers’ machines. Now imagine $10,000 being wired to a rogue account based off of an email that included the correct language and information; or all of your employees receiving emails from your network administrator requesting they confirm their passwords. These are not hypothetical situations, but rather real-life examples that have all happened multiple times, regardless of industry or location.

How to Mitigate Email Account Takeover

Many banks and credit unions have realized that simply having the correct username and password is no longer enough to ensure a truly secure email account. Successful email account takeover attacks reveal a lack of adequate protection which, when recognized, can be corrected. Some proven methods to effectively prevent an attack include the following.

Employee Training

Download the PDFThe 2019 IT Outlook for Community Banking Get a Copy

Increasingly, banks and credit unions are recognizing employee training as an important security mechanism and prevention protocol. Employees who are not adequately trained on how to properly use email, including: email attachment protocols; how to deal with unknown senders; and how to spot suspicious emails; can quickly become a top vulnerability and security threat for their institutions. Training for all employees—from tellers and loan officers up to the President and CEO—is critical.

Password Usage

Remembering all of the passwords required to secure daily activities has become a tall order, one which often results in employees using the same (or a limited set) of passwords for all accounts. This is not a good idea as once your password is compromised in one place, you are then immediately vulnerable in multiple places. Whenever possible, one should randomly generate a unique password for each program or site that they use.

Outside Testing

Community banks and credit unions can leverage an outside security company to conduct security training and checks to verify exactly how their employees interact with suspicious emails. This allows network administrators to evaluate different levels of risk based on whether an employee a) ignored the email, b) opened the email, or c) clicked the link and provided information. After conducting this test, the administrator can then use that opportunity to educate employees on what happened during the test, explain how the system was compromised, and provide applicable advice on how to recognize these types of attacks in the future.

Stop Email Account Takeover Attacks with Multifactor Authentication

A proven way to protect your bank’s email system is to implement multifactor authentication, which requires more than one method of authentication to verify a user’s identity for a login or other transaction. This security option is designed to make it more difficult for cybercriminals to access bank accounts and other sensitive information.

While there are different ways to implement multifactor authentication, the three basic elements that can be used in this process include: Something the user knows, like a password or PIN; Something the user possesses, like a smart card, token or mobile phone; and Something the user is (i.e., biometrics), such as a fingerprint or retina scan.

Many of our customers rely on Safe Systems SafeSysMail O365 hosted email solution, which provides them the option to turn on dual-factor authentication to increase the layers of security. When employees login to their email account, they must first type in their username and password. Then, as a second factor, they use a mobile authentication app, which will generate a code or PIN to enter on the screen and only then are they given access to the account. If you or your employees don’t have a smart phone, that’s ok. Microsoft provides multiple ways to implement their multifactor solution. Implementing multifactor authentication is a powerful step toward preventing hackers from gaining access to accounts — even if a password or security answer is stolen.

For such a seemingly simple act, account takeover presents significant reputation risk and financial risk to your institution, but by ensuring that your bank or credit union adopt proven strategies to counter it – and remain diligent in performing them – it is a threat that can be prevented.

24 Jan 2019
What Community Financial Institutions Should Look for in a Managed Services Provider

What Community Financial Institutions Should Look for in a Managed Services Provider

What Community Financial Institutions Should Look for in a Managed Services Provider

The majority of banks and credit unions rely on managed services providers to help them improve efficiencies in their organization, meet mounting regulatory compliance requirements, and provide the competitive products and services their customers and members expect.

However, selecting the right managed services provider can be challenging. We have highlighted some key qualities that community banks and credit unions should look for when choosing trusted partners.

A managed services provider should have a true understanding of the following areas:

The community banking and credit union industries

Complimentary White PaperAutomating Your Compliance Processes with Technology Get a Copy

A managed services provider must truly understand the “ins and outs” of operating a community bank or credit union. This includes recognizing the industry trends, realizing the importance of priorities, such as customer- and/or member-service related touch points, and understanding regulatory and compliance issues. Not knowing how a community financial institution operates is a hindrance that can prohibit the provider from effectively meeting the demands of the institution and makes it unlikely that it will be in a position to offer informed recommendations on improvements and solutions to existing issues.

Financial services technology

Technology is ever-changing and it is nearly impossible for any one person to successfully keep up with all of the advancements. To provide the technological solutions and services that a community bank or credit union requires, a managed services provider should understand the technical requirements of all banking technology solutions, starting with the core platform. Since many applications have to work with — and integrate into — the core platform, it is impossible to design an efficient and comprehensive network without first an understanding of core platforms and banking technology.

Regulatory compliance requirements

The evolving world of financial regulatory compliance governs every aspect of your IT network and that includes what hardware and software you choose to deploy. In today’s banking environment, vendors must be able to make recommendations on how to manage hardware and software to meet regulatory expectations, meet regulatory expectations such as, verifying all patches, ensuring security measures are up to date, and maintaining access to critical services during a disaster.

Working with the wrong managed services provider can be time-consuming, cumbersome, and even stressful. However, working with a provider who offers the desired services and who truly understands your industry can help guide the institution in today’s challenging financial environment. A good partnership is key to ensuring your organization remains competitive and profitable for years to come.

18 Oct 2017
Targeting Employees - How to Prevent Phishing

Targeting Employees: How to Prevent Phishing Scams & Keep Your Financial Institution’s Data Secure

Targeting Employees - How to Prevent Phishing

Cyber-attacks are becoming more sophisticated as cyber criminals find alternative ways to target financial institutions and their data. Most recently, there has been an increase in phishing scams that specifically target bank employees, attempting to obtain sensitive information such as usernames and passwords. The ultimate goal is to trick bank employees into clicking on links or opening attachments that redirect them to fake websites where they are encouraged to share login credentials and other personal information.

With access to your employees email accounts, cyber criminals have the ability to read your bank’s critical information, send emails on your employees’ behalf, hack into the employee’s bank and social media accounts, and gain access to internal documents and customer financial information. This can result in both financial and reputational risks for the institution and its employees.

To help protect your institution’s data, here are two key ways to prevent phishing scams and increase security for your community bank or credit union:

  1. Employee Training is the Number One Priority
  2. Without proper training, it is very easy for employees to fall victim to a variety of email phishing scams. Financial institutions must have a policy of on-going testing and training to ensure employees understand security procedures and are equipped to identify phishing emails and other security threats. It is also important to establish a security culture within your organization to ensure that all employees recognize that they have a personal responsibility to safeguard against breaches.


    Community banks and credit unions can also leverage an outside security company to conduct security training and checks to verify how employees interact with suspicious emails. This allows network administrators to look at different levels of risk based on whether an employee ignored the email, opened the email, or clicked the link and provided information. After conducting this test, the administrator can then use that opportunity to educate employees on what happened during the test, explain how the system was compromised, and provide applicable advice on how to recognize these types of attacks in the future.

  3. Stop Email Phishing Attacks with Multifactor Authentication
  4. A proven way to protect your bank’s network is to implement multifactor authentication, which requires more than one method of authentication to verify a user’s identity for a login or other transaction. This security option is designed to make it more difficult for cybercriminals to access bank accounts and other sensitive information.

    While there are different ways to implement multifactor authentication, the three basic elements that can be used in this process include:

    • Something the user knows, like a password or PIN;
    • Something the user possesses, like a smart card, token or mobile phone; and
    • Something the user is (i.e., biometrics), such as a fingerprint or retina scan.

Many of our customers rely on Safe Systems SafeSysMail O365 hosted email solution, which provides them the option to turn on dual-factor authentication to increase the layers of security. When an employee tries to login to their email account, they would first type in their username and password. Then, as a second factor, they would use a mobile authentication app, which will generate a code or PIN to enter on the screen and would then be given access to the account. Implementing multifactor authentication is a powerful step toward preventing hackers from gaining access to accounts even if a password or security answer is stolen.

To combat today’s cyber threats, financial institutions must stay up to date on the latest phishing strategies and verify that the security policies and solutions in place can reduce potential threats. It is also vitally important that employees understand the types of attacks they may face, the risks, and how to address them. Implementing a combination of employee training and multifactor authentication strengthens your institution’s security strategy and can make the difference when (not if) cybercriminals attempt to hack into your employee accounts.

White Paper Download
Read the Guide

02 Nov 2016

Should Community Banks Use Skype? Exploring the Benefits of Skype for Business

Should Community Banks Use Skype? Exploring the Benefits of Skype for Business

Safe Systems customers of SafeSysMail already know that their email solution is powered by O365, which includes Skype for Business, but may not fully appreciate the scope of benefits that it provides. This powerful tool brings together real time instant messaging, business meeting capability, and desktop sharing into one comprehensive desktop environment.

Chances are, you are already familiar with the Skype brand. Skype rose to notoriety as an Internet video and audio calling solution, and people from around the world use it for these features today. Microsoft acquired Skype in 2011, and has since expanded its utility to include a much broader set of communications features. In the next few paragraphs, we will briefly touch on the many avenues for communication that Skype can provide for your institution.

Chat

Skype Messaging is actually an evolution of Microsoft’s existing Instant Messaging client, Lync. Like most Instant Messaging platforms it supports adding and grouping contacts, auditing status of those contacts, tracking conversation with those contacts, and archival of those conversations. Additionally, you can set an outgoing status message for other to see (such as your phone extension) and define your status (Available, Away, Busy, Do Not Disturb, etc.). If you forget to update your status, don’t worry – your status will dynamically adjust based on your Exchange calendar’s scheduled meeting. These features make it easier for your employees to know when their coworkers are available for a quick chat, regardless of their location.

The conversation thread window is full featured as well, supporting file transfer, multimedia messaging, and direct transition into group chat, desktop sharing, and video/audio calling. The interface integrates messaging, desktop sharing, and business meeting features for easy access on the fly. This means that conversations can blossom into quick meetings, and users can conveniently show their work without having to flip back-and-forth between screens.



Free White Paper



Dispelling 5 IT Outsourcing Myths within Financial Institutions

Learn why five of the most commonly believed “facts” about IT outsourcing within community financial institutions are actually myths.



7 Reasons Why Small Community Banks Should Outsource IT Network Management



Collaboration

Skype is designed to make collaboration a snap. The Skype Desktop Sharing feature allows you to share an individual program on your screen or your entire desktop with a single contact or a group. If your pop-up meeting requires additional input, then you can add additional meeting participants into the existing communication.

For a more formal meeting, the Skype Business Meeting function allows users to send calendar invites and meeting information to selected users. Once the meeting begins, the same interface used in the Desktop Sharing function is used to conduct the meeting. In order to keep everyone on the same page, the console provides helpful real-time information; you can see if users are muted, typing in the chat window, transmitting video, or sharing their screen. If you started the meeting you can also configure some of those input settings, such as manually muting a user if needed.

Skype fills a business need by empowering employee communication and collaboration. While Skype is far from the only application you can use for this purpose, it does an excellent job packaging a number of useful features into a user-friendly tool. And if you are an O365 customer through SafeSysMail, then you cannot beat the price. Consider investigating Skype to determine if it is the right fit for your institution.
To learn more about how community bankers nationwide are leveraging SafeSysMail and Skype for Business to improve communications and encourage greater collaboration among their staff, please check out our website.

11 Jul 2016

The Real Cost of Hosting Your Bank’s Email Server and Why Outsourcing Is More Cost Efficient

Cost and efficiency are the two aspects of a product or process that any community financial institution must balance as it strives to find middle ground that satisfies stakeholder needs without breaking the budget. Email is no exception to this rule. Email has long been seen as a free communication tool. However, this free communication tool can easily end up costing $50,000 over a 5 year period. When email started it was a “nice to have,” but it is now a key part of communication and business processes. In fact, email has morphed into such a “must have” that email system sluggishness, instability, or downtime is not an option for most institutions.

What makes email so expensive?

Over a five year period, financial institutions that host email internally have costs related to:

  • Server-Hardware
  • Licensing
    • Client access licensing
    • Server OS license
    • Microsoft Exchange license
  • Backup and storage costs
  • Email filtering cost
  • Securing messaging (encryption) cost
  • Support cost – External or internal expertise
  • Monitoring/alerting cost
  • Redundancy/uptime/Recovery costs
  • Exchange Migration/upgrade costs
  • Costs for optional features such as archival and other add-ons

So, the cost of hosting an email server within your bank can add up quickly and be quite expensive. In addition to the high cost, many banks and credit unions prefer or even require a solution that is tailored for the specific needs of the financial services industry. For a community bank or credit union, the highest levels of security and confidentiality are necessary to meet strict regulatory requirements, making an off-the-shelf email platform unsuitable without modifications.

Outsourcing Email Hosting

To combat some of the expenses of hosting email servers internally, many financial institutions have turned to outsourcing their email needs. At Safe Systems, we have worked with financial institutions as they completed a simple cost comparison of hosting their email server internally versus hosting it with an outsourced provider, and most chose to outsource. In fact, we had almost 100 financial institutions move their email to our system, SafeSysMail, in the first year after it was released. Those that chose to keep email in-house often overlooked an increasingly critical cost – the cost of ensuring high availability of the email system. Over the last 18 months, we’ve seen institutions re-evaluate hosting their email with us in order to address this issue of availability.

The cost of using an outsourced email solution is typically much more straightforward than hosting internally. Here are some typical costs associated with moving to a hosted email solution:

  • Email, encryption, filtering – Price/User/Month
  • Add-ons – Price/User/Month
    • Archival
    • Lync/Skype

For this flat cost per user, customers receive:

  • High availability of email services
  • Minimal to no additional cost for maintenance/upgrades
  • Backups to geographically distributed locations
  • Email expertise that is hard to match on a smaller scale implementation
    • Ability to respond to phishing/social engineering attacks quickly
    • Responses to issues or downtime quickly

Customized Email Platform for Financial Institutions

To meet the demands of the financial services industry, Safe Systems has customized our email offering, SafeSysMail, specifically for financial institutions by adding on layers for compliance and security. Our platform runs on Microsoft’s Office 365 Exchange platform which is the biggest, most robust platform on the market today. Safe Systems eliminates the burden of running Microsoft Exchange internally, while maximizing productivity. With SafeSysMail, a previous winner of the BankNews Innovative Solutions Award for best Consulting/Outsourcing/Training solution, financial institutions can eliminate the operational headaches and minimize the costs associated with the implementation, management, maintenance, and recoverability of your email system. This is accomplished while also greatly enhancing availability, maximizing uptime, and adding redundancy only available at scale.

Email is not free. In fact, it is very expensive. As a vital part of your institution, your email solution needs to function smoothly and consistently in order to support your business functions. In the end, it should provide a stable, scalable, robust, and redundant solution, but meeting all of these requirements cannot be easily accomplished with an internal solution at a reasonable cost. Working with Safe Systems gives you access to an email solution that, while powered by Microsoft’s cloud email solution, is designed exclusively for financial institutions. SafeSysMail includes extra layers of protection including products highly rated by Gartner and used by the government for SPAM and malware filtering, and on demand encryption. Working with one of the largest providers of hosted services designed exclusively for financial institutions and their specific needs offers the peace of mind and confidence that your bank’s email will be compliant, protected, and available – all at a lower cost than hosting internally.




Free White Paper



Dispelling 5 IT Outsourcing Myths within Financial Institutions

Learn why five of the most commonly believed “facts” about IT outsourcing within community financial institutions are actually myths.



7 Reasons Why Small Community Banks Should Outsource IT Network Management



22 Jun 2016

Safe Systems Enhances Email Platform for Community Banks and Credit Unions

Email is a key communication and business tool in the banking world.  Despite a large number of choices in email providers, many banks and credit unions prefer a solution that is tailored for the specific needs of the financial services industry. For many small-to-medium businesses, an off-the-shelf email platform will fit their needs. However, for a community bank or credit union, the highest levels of security and confidentiality are necessary to meet strict regulatory requirements.

Customized Email Platform for Financial Institutions

To better meet our customer’s needs, Safe Systems’ hosted email exchange solution, SafeSysMail, which received the BankNews Innovative Solutions Award for best Consulting/Outsourcing/Training solution, is now powered by Microsoft’s Office 365 platform.  Our email offering comes with added layers for compliance and security, making it a great choice for financial institutions. The platform eliminates the burden of running Microsoft Exchange internally, while maximizing availability. With SafeSysMail, you can eliminate the operational headaches and minimize the costs associated with the implementation, management, and security of your email system.

Better Meet Regulatory Requirements

SafeSysMail features high data privacy, security, confidentiality, integrity and availability standards that adhere to the FFIEC guidelines on managing cloud vendors. Safe Systems reviews Microsoft’s O365 platform yearly and provides the customer with a copy of our risk assessment documentation.  Office 365 also offers a Service Trust Portal for easy access to documentation required for vendor due diligence.  Email archival is also offered as an optional add-on through a third party provider that is more closely aligned with financial institution needs.

Key SafeSysMail Features

With SafeSysMail, financial institutions receive a hosted email solution bundled with the features financial institutions need to secure and manage their email, including:

  1. Email encryption — Our encryption solution is used by federal banking regulators, 20 state banking regulators, multiple divisions of the US Treasury, the SEC, and more than 1,600 financial institutions.
  2. SPAM and Antimalware protection
  3. Advanced scanning of email — including over 200 attachment file types as well as advanced encryption verification reporting
  4. Mobile device access — for Active Sync compliant devices
  5. Customized reporting — specifically designed for financial institutions and compliance needs
  6. Support from Safe Systems — No need to call Microsoft directly if you encounter issues. Safe Systems has trained customer service representatives available to provide support for the service. In addition, Safe Systems staff constantly reviews security issues and personally responds to them protecting the financial institution from potential malware or spoofing attempts.
  7. Vendor management packet — including our risk assessment documentation and guidance for accessing additional due diligence information
  8. Enhanced Email Archival

 

While SafeSysMail is powered by Microsoft’s cloud email solution, it is designed exclusively for financial institutions. SafeSysMail includes extra layers of protection including products highly rated by Gartner and used by the government for scanning email for SPAM, viruses, and on demand encryption. Working with one of the largest providers of hosted services designed exclusively for financial institutions and their specific needs offers the peace of mind and confidence that your bank’s email will be compliant, protected and available.




Free White Paper



Dispelling 5 IT Outsourcing Myths within Financial Institutions

Learn why five of the most commonly believed “facts” about IT outsourcing within community financial institutions are actually myths.



7 Reasons Why Small Community Banks Should Outsource IT Network Management