Email Encryption Best Practices
As managed service providers and IT professionals, you know firsthand there’s an ever-increasing risk to your clients’ IT security. The threat landscape is evolving every minute to take advantage of your clients’ vulnerabilities.
And although you may see the need for increased security measures, the truth is that most SMB (with an emphasis on the ‘S’) organizations simply don’t. Nor do they understand how their current security plan is leaving their business open to exposure. That’s where you step in.
Offer Clients an Encryption Education
Education and product expertise are your keys to success in this market. By letting clients (or prospects) know what vulnerabilities exist in their current architectures, and recommending options that close the gap(s), you’ll position yourself to win more business.
Some of the most recent large scale security breaches have been the result of organizations not leveraging encryption. It’s becoming much more prevalent in the MSP space and it’s only a matter of time before we begin seeing encryption as a staple in our managed offerings.
There are many regulatory standards including financial (GLBA), healthcare (HIPAA), PHI, etc. driving the need for secure email encryption. Whether it’s compliance within a given vertical that triggers your clients’ awareness or you simply want to ensure their email is safe, you need to partner with a proven solution that leverages email encryption.
3 Ways to Encrypt Email
There is a huge amount of sensitive information being exchanged via email daily, so let’s execute our due diligence and protect ourselves and our clients. Here are three ways your clients’ emails can be encrypted with a solution like Reflexion:
- Force Phrase Keyword. Provide your clients with a tool that gives them the ability to add a fixed phrase to the emails subject line—e.g. any emails with the word ‘encrypt’ within the subject line will in fact be encrypted.
- Encryption Policy Tripping. MSPs and IT administrators have the ability to configure encryption policies that automatically detect the presence of personally identifiable information. When such information is detected in the body of an email message, that message is encrypted.
- Manually Marking as Confidential. If your clients are leveraging Outlook, users can simply mark a message as confidential. This may be the least desirable option of the three as it leaves the encryption responsibility in the hands of your client.
Selling email encryption to SMBs isn’t impossible. It simply requires a bit more education. Most SMBs simply don’t understand how open their current solutions leave them to email-borne threats. By presenting them with the facts while avoiding scare tactics, you can begin to strengthen your SMB email encryption play.