user.5Jq6BKhVD2N9

Security Hardening Checklist

Blog Post created by user.5Jq6BKhVD2N9 Champion on Apr 12, 2018

Mimecaster Central community rockstar (and Legend!David Ignash is a Security Administrator, working for a financial institution that specializes in farm loans. He’s been tinkering with IT ever since he got his hands on his first Commodore 64. David has lived in Michigan (United States) all his life, and currently lives in the Lansing area. You can also check out his community Q&A here.

 

Have you ever wondered if you are using all of the Mimecast features available to make your organization as secure as possible? Well wonder no more! Follow this checklist to ensure that you are taking advantage of all that Mimecast has to offer.

 

Users

Done?Users
Checked what account is your "Super Administrator"
  • Ensured that the password to your "Super Administrator" is in a secure location, not easily guessed
Does Help Desk have access to help external customers? (i.e. Secure Messaging)
  • Should they?

Do other users/administrators have the least amount of privileges to accomplish their job?

Managing Administrator Roles 

 

PII (Personally identifiable information)

Done?PII
Checked what your organization identifies as PII

 

Disaster Recovery

Done?DR
Have you performed a Disaster Recovery test at least once a year?

 

Up to date software

Done?Software
Are users running the most up to date version of "Mimecast for Outlook"?

 

URL Protection

Done?URL Protect
Is URL Protection enabled for all emails coming into your organization?

 

Attachment Protection

Done?Attachment Protect
Is Attachment Protection enabled for all emails coming into your organization?

 

TLS

Done?TLS
Are TLS settings configured to ensure that email is sent securely?

 

Impersonation Protection

Done?Impersonation
Are Impersonation Protection settings configured to alert the user of suspicious emails?

 

DNS Authentication

Done?DNS
Are DNS settings configured to ensure that mail is sent securely?

 

Greylisting

Done?Greylisting
Is greylisting configured to ensure that suspicious emails are filtered out?

 

Account settings

Done?Account
Are account settings configured to ensure the console is secured? (i.e. Admin IP Ranges)

 

Synchronization

Done?Synchronization
Is Active Directory synchronization still pulling in the correct data?

 

Authorized Outbounds

Done?Outbounds
Has anything changed with your authorized outbounds IP addresses?

 

Secure Messaging

Done?Secure Messaging
Has secure messaging been enabled so users can safely submit sensitive data?

 

Training

Done?Training
Have the appropriate users been trained in how to use Mimecast securely, or even Mimecast at all?

 

This list provides a way to help you check major security settings within Mimecast. It is also meant to help you think of other areas within the application to ensure you are a secure as possible. You could check this once a year just to make sure things are healthy, and keep up with changes to your organization.

 

Thank you!

Outcomes