KnowBe4 Cloud Email Security (Formerly Egress) Features

Administration (11)

Data Management: Administrators can access and organize data related to incidents to produce reports or make data more navigable.
Incident Logs: Information on each incident is stored in databases for user reference and analytics.
Reporting: Produces reports detailing trends and vulnerabilities related to bot management and performance.
Intelligence Reporting: Actively gathers data on suspicious sources and characteristics of potentially malicious content
Email Integration Suppor: Supports secure implementation with popular email applications and clients.
Access Management: Allows administrators to set user access privileges to permit approved parties to access sensitive data.
Data Loss Prevention: Has pre-built data loss prevention (DLP) functions which prevent employees or accounts that have been hacked from sending out sensitive information.
Compliance: Supports compliance with PII, GDPR, HIPPA, PCI, and other regulatory standards.
Intelligence Reporting: Actively gathers data on suspicious sources and characteristics of potentially malicious content
Email Clients: Supports secure implementation with popular email applications and clients.
Role-Based Rules: Allows administrators to set user access privileges to permit approved parties to access sensitive data.

Encryption: Protects data with within and as it leaves your secure or local network.
Endpoint Intelligence: Analysis for users to examine threat intelligence data specific to their endpoint devices.
Activity Monitoring: Documents the actions from endpoints within a network. Alerts users of incidents and abnormal activities and documents the access point.
Breach Detection: Provides incident alerts for leaks or breaches and provides capabilities to inform administrators of attacks.
Anti-Malware/Anti-Spam: Prevents malware or spam in emails either through predictive or reactive anti-malware/anti-spam tools.
Encryption: Encrypts the content of emails and their attachments.
Quarantine: Isolates potentially malicious content and files before they can gain network access
Advanced Threat Protection (ATP): Includes advanced tools, including machine learning analysis to detect threats often missed by traditional filtering tools, such as unsafe attachments, advanced malware, and targetted social engineering attacks.
Anti-Phishing: Prevents both phishing attacks and spear-fishing attacks, including impersonation attacks.
Account takeover prevention: Has pre-built data loss prevention (DLP) functions which prevent employees or accounts that have been hacked from sending out sensitive information.

Auditing: Access pre-built and custom reports to monitor user activity and storage.
Allow and block lists: Prevents previous committers of fraud and other suspicious accounts from future communications
Compliance: Supports compliance with PII, GDPR, HIPPA, PCI, and other regulatory standards.
Archiving: Archives conversations, files, and other communications for future reference

Data Exfiltration Detection: Alerts administrators and other related parties about the unauthorized movement or release of company information.
Activity Monitoring: Monitors user email activity, documents behaviors for baselining and anomaly detection.
Real-Time Detection: Constantly monitors system to detect anomalies in real time.

Targeted Attack Prevention: Analyzes historical email data, identifies at-risk individuals, then detects and blocks targeted spam emails.
Policy Enforcement: Allows administrators to set policies for security and governance.
Spam Filtering: Prevents spam emails containing phishing links, suspicious URLs, and malicous attatchments from reaching a user's inbox.

Encryption Algorithms: Supports various encryption algorithms including AES (Advanced Encryption Standard), RSA (Rivest-Shamir-Adleman), Twofish, and Pretty Good Privacy (PGP).
Transport Encryption: Encrypts the email during transit between email servers, preventing interception by third parties.
End-to-End Encryption: Encrypts the message on the sender's device and decrypts it only on the recipient's device, ensuring that only the sender and recipient can read it.

Revocation Mechanisms: Allows users to revoke access to encrypted emails or keys in case of compromise.
Access Controls: Enables users to set permissions on who can access, read, or modify their encrypted emails.
Digital Signatures: Allows senders to sign their emails cryptographically, providing proof of authenticity and integrity.
Certificate Authorities: Verifies the identities of individuals or organizations through trusted third-party certificate authorities.

Malware Scanning: Integrates with antivirus solutions to scan email attachments for malicious content.
Reporting: Generates reports on encryption usage, compliance status, and security incidents.
Audit Trails: Logs and tracks encryption-related activities for compliance, troubleshooting, and security analysis.
Data Loss Prevention (DLP): Offers DLP features to prevent accidental or unauthorized transmission of sensitive information.

User-Friendly Interfaces: Offers intuitive interfaces for sending, receiving, and managing encrypted emails.
APIs and SDKs: Offers application programming interface (APIs) and software development kits (SDKs) for integrating encryption features into custom applications or workflows.
Email Client Integration: Integrates seamlessly with popular email clients, including Gmail, Microsoft Outlook, and Thunderbird.
Automation: Automatically performs encryption and decryption processes to minimize user effort and errors.