What do you think about traditional email Security (MX record) vs API-based email security?

Applications & PlatformsData & AnalyticsInfrastructure+2 more
2.3k views2 Upvotes3 Comments
Director of IT in Software, 201 - 500 employees
I have experience with both and like the API-based way better. There is no downtime, and the implementation takes literally 5 minutes, with no MX records changes, no wait for the DNS to update etc.
When an email security solution asks me to change the MX record, I instantly see them as a legacy system and wants to stay away if possible
2
Director of IT in Manufacturing, 1,001 - 5,000 employees
API is easier, however. I’ve found in real world deployments, the gateway approach tends to be more effective overall by helping to ensure malware/phishing never even reaches the end email system, most notably by the flagship brands like proofpoint. I’ve seen API solutions rely too much on detection after delivery which allow the payload to be accessed by the enduser and then executed prior to detection/quarantine.
2
VP of Engineering in Software, 51 - 200 employees
Traditional email security or MX records are great for protecting against large-scale threats like phishing and man-in-the-middle attacks. However, they are not effective against targeted, sophisticated attacks. API-based email security provides an additional layer of security and can detect anomalies in behavior that indicate malicious intent. This type of solution can be especially effective when used in conjunction with traditional email security.

Content you might like

Does anyone know any ChatGPT/AI Prompt Engineering trainer/training company who would come to my firm and provide a 1-3 hour session of group training? Has anyone found such resources who perform this training?  

Process ManagementApplications & Platforms
Senior Vice President - Advanced Engineering & Data Analytics in Manufacturing, 10,001+ employees
We can help here for prompt engineering from Zensar. This is Rajat. You can reach me at rajat.sharma@zensar.com
Read More Comments
1.9k views4 Comments

We are looking into implementing Wecom / Wechat for Work for our Chinese employees, however we are having difficulty meeting our basic security requirements for SaaS solutions. Has anyone found a reasonably elegant solution to a) provision users through an IGA tool, b) federate with an SSO platform like Okta and most tricky c) send some form of security audit trail to a SIEM? Should we be thinking about this through a different paradigm?

Security & GRCEnd-User Services & CollaborationApplications & Platforms
839 views

Do you trust the data & reports from the big analysts?

Strategy & Architecture

Yes41%

No15%

Sometimes42%


8249 PARTICIPANTS
71.7k views166 Upvotes58 Comments

Is the Double Diamond Design Model Still Relevant? In today’s world where code can be pushed multiple times a day, and prototypes quickly tested, the rigid phases of the Double Diamond can feel constraining. The model’s omission of execution for three-quarters of the process could create significant risk. Do you think is it time to reconsider this design approach?

End-User Services & CollaborationDisruptive & Emerging TechnologiesStrategy & Architecture
1.3k views1 Comment

Which components of the Oracle Database environment do you plan to move to the cloud? (Select all that apply)

CloudApplications & PlatformsData & Analytics+7 more

Production45%

Backup64%

Replication34%

Non-production DBs (Dev, Training, QA, etc.)31%


213 PARTICIPANTS
1.3k views1 Upvote