Proofpoint Email Protection Reviews

Proofpoint Email Protection serves as our email security solution. The entire SOC team uses Proofpoint Email Protection. The granularity in admin access is different, so each team has their own access to Proofpoint Email Protection. SOC people and four admins with complete access to Proofpoint Email Protection use the system, so overall, only the SOC and email security team have access to it.

Proofpoint Email Protection works on policies, so everything is under the admin's control, and the admin can stop emails. If there are email attacks, the admin can detect and stop them immediately without having to contact support. The admin can perform everything in the console itself. Proofpoint Email Protection has very good granularity of access, and the detections are excellent. It has different types of detection for malware, phishing, spam, adult content, and bulk emails with different engines working behind the scenes, so the detections are quite accurate. The blocking system is effective, so if an email is on the block list, it will remain on the block list. The UI experience for admins is quite feasible and easy to navigate.

I prefer Proofpoint Email Protection to other solutions. I have used Microsoft Defender, Check Point Harmony Email & Collaboration, and Proofpoint Email Protection. Proofpoint Email Protection is better for admins to manage overall, though it has higher false positives. However, the navigation, UI experience, working experience, and detections are very good in Proofpoint Email Protection compared to other tools.

Proofpoint Email Protection easily detects even legitimate emails as spam or phishing, which has increased the workload. However, if an email is detected as phishing after delivery, Proofpoint Email Protection has a module called TRAP to pull back the emails. It also has URL Rewriting, which reduces the workload because everything is done by Proofpoint Email Protection itself, resulting in less manual interaction.

Proofpoint Email Protection detects risks and has a dashboard that shows how high-risk users are based on the emails they receive and their interactions. Based on that information, we can proceed with our investigation, and if remediation is needed, we can implement it. Proofpoint Email Protection identifies high-risk users, and we can put alerts on people we want to monitor, such as any CSOs or CISOs, to ensure their mailbox is not under threat.

For a beginner level, someone who is very new to email security might find it difficult to manage as an admin. Navigation can be concerning because Proofpoint Email Protection has different consoles, such as for TRAP, and it has many modules within it, which might be difficult to navigate. Proofpoint Email Protection has a lot of false positives, and the infrastructure is a bit complex. I was not part of the deployment, but I have heard that the deployment process is a bit complex. The support is good, though it can sometimes be slow.

I have been using Proofpoint Email Protection for two and a half years.

Proofpoint Email Protection is a stable product, and I would rate it an eight.

Scalability is good, and I would say Proofpoint Email Protection does not have any issues with scalability, so I would give it a nine.

The support is good, though it can sometimes be slow.

I prefer Proofpoint Email Protection to other solutions. I have used Microsoft Defender, Check Point Harmony Email & Collaboration, and Proofpoint Email Protection. Proofpoint Email Protection is better for admins to manage overall.

I was not part of the deployment, but I have heard that the deployment process is a bit complex.

I would say more than 50 percent because before we were vulnerable to email-related threats, and now it is drastically reduced, so Proofpoint Email Protection was a good decision made by the organization. Before deploying Proofpoint Email Protection, we were frequently attacked by phishing and DDoS. After deploying Proofpoint Email Protection, it has reduced attacks up to 80 percent, and the remaining 20 percent are unexpected DDoS attacks. After Proofpoint Email Protection, phishing has been completely eliminated, so it is working very efficiently.

I prefer Proofpoint Email Protection to other solutions. I have used Microsoft Defender, Check Point Harmony Email & Collaboration, and Proofpoint Email Protection. Proofpoint Email Protection is better for admins to manage overall.

I would rate this review a nine out of ten.

Hybrid Cloud

Amazon Web Services (AWS)

We are the integrator for Proofpoint Email Protection, and for one of our customers, we support the solution. As my organization has a large customer base, we support our clients widely, working as a consultant and integrator for Proofpoint Email Protection products. We assist customers in adapting Proofpoint Email Protection solutions, including email protection and authentication aspects, with email protection being the primary solution. We perform all end-to-end deployments for our customers.

The usual use cases for Proofpoint Email Protection that I work with mostly include defining inbound and outbound policies and fine-tuning email protection rules. We focus on email hygiene, mail delivery issues, defining mail policies, and creating rules based on specific conditions. We also address URL Defense, Attachment Defense, anti-spam, anti-phishing capabilities, and ATP features, while troubleshooting issues such as malware definitions and URL rewrite options, particularly related to Business Email Compromise. Additionally, we work with email authentication protocols such as SPF, DKIM, DMARC, DLP scenarios, and email encryption modules, as all aspects present in Proofpoint Email Protection on Demand instance are addressed.

Customers usually prefer the deployment of Proofpoint Email Protection on cloud solutions, specifically, Proofpoint Email Protection on Demand instance, which is easy to access and administer. However, for certain features such as TRAP, an on-premises solution may be necessary, as it reduces administrative overhead.

Using Proofpoint Email Protection has significantly improved SOC analyst workloads for my customers by enhancing response times and adding value through built-in threat investigation tools. These tools streamline processes such as IOC extraction and automatic incident resolution, saving time as all incidents are resolved automatically through its SIEM tool and SOAR platform. This efficiency allows SOC teams to focus on higher priority issues while Proofpoint Email Protection handles routine tasks.

Deploying Proofpoint Email Protection offers significant financial benefits by safeguarding infrastructures and digital assets for organizations, especially in the financial sector. This includes ensuring email hygiene, where end users do not have to distinguish between spam and genuine emails. Proofpoint Email Protection helps prevent costly mistakes, such as a high-impact user almost falling for a scam, ultimately saving millions. This sophisticated and secure solution is easy to deploy and adapt to any business.

Proofpoint Email Protection provides a high level of visibility into people-based risk within my customers' organizations by helping identify imposter attacks and displaying the Attack Index. This feature shows which individuals, including financial teams and C-level executives, are targeted the most, allowing for quick navigation through reports to understand password compromises and attack surfaces.

The time required for email investigations and responses has significantly changed due to Proofpoint Email Protection's visibility and automation, allowing for quicker troubleshooting of mail flow issues from multiple tools. Proofpoint Email Protection simplifies the process by identifying exact reasons for flags and rules, enabling faster identification of issues without wasting time.

I find that Proofpoint Email Protection's ATP, or Advanced Threat Protection, is a key feature that analyzes emails for threats or malware. URL Defense is another valuable capability that distinguishes it from other products. The default inbound email policies and rules enhance email hygiene by preventing spoofed emails and phishing attacks, making it a highly valuable solution due to the extensive control Proofpoint Email Protection provides when defining rules or policies.

The unified admin console and Threat Protection Workbench of Proofpoint Email Protection provide comprehensive insights into security operations by displaying open incidents, closed issues, and specific alert details. It integrates with various mail solutions such as Exchange and Office 365, showing alerts that were remediated and detailed forensics of incidents, making it an efficient tool for analysis and root cause identification for any critical issues.

Proofpoint Email Protection has a significant influence on the quality of threats that my customers need to protect against by scanning every email and conducting thorough checks. It flags suspicious email content, sandboxing it for deep analysis with AI and ML, preventing threats even if spam emails initially reach mailboxes. The Threat Auto Response Pull solution automatically removes suspicious content and escalates incidents to the SOC team for overview and insights.

The overall scope of Proofpoint Email Protection's threat protection capabilities is comprehensive, addressing modern security challenges with its core security features, including anti-spam, anti-phishing, ATP, URL Defense, BEC protection, email authentication, email encryption, and DLP. Its threat intelligence utilizes machine learning, enabling global updates for threats reported by other customers, effectively safeguarding all users without individual reports. This enhances user protection through features that allow quarantine management, reporting phishing attempts, and auditing changes within the system.

Areas of Proofpoint Email Protection that could be improved may involve incorporating advanced AI capabilities to generate more detailed reports on spam emails and user interactions with suspicious content. By doing so, insights on which users face frequent attacks and overall remediation actions could be more accessible through an executive-level dashboard.

I have been working with Proofpoint Email Protection and its modules for the last seven or more years, since 2016.

Proofpoint Email Protection is very stable and reliable, as it remains accessible at all times without issues, ensuring that data is available in real time.

Proofpoint Email Protection is scalable for customers, accommodating various instances, which is a default module. It remains flexible and can be adapted to a customer's needs. With two to three instances provided for high availability, it is consistently scalable and provides statistics regarding memory usage and response times.

I often communicate with the technical support of Proofpoint Email Protection. We have taken course modules, and I reach out to consultants and architects closely whenever there is a solution opportunity or requirement, ensuring a collaborative effort.

Based on my experience with the technical support of Proofpoint Email Protection, they are very helpful, efficient, and provide effective resolutions according to the established support model and coverage details.

I usually participate in the initial setup and deployment of Proofpoint Email Protection, where we work closely with both Proofpoint Email Protection and customer consultants to proceed with the deployment options.

The usual setup process I perform involves generating samples and analyzing reports from previous mail flow statistics to map capabilities to Proofpoint Email Protection. After enabling the service, I provide insights on mail flow traffic and present dashboards demonstrating spam filtering effectiveness during a proof of concept period.

The initial setup and deployment process is straightforward, with well-defined documentation available for every action, making it easily adaptable, and we also have technical professional support as needed.

I am aware that the pricing and licensing for Proofpoint Email Protection are based on user objects and the modules subscribed. While my focus has been mainly on technical deployments, I understand charges vary with requirements for features such as TRAP or email and security information protection modules.

Proofpoint Email Protection is competitively priced, although it may be slightly higher than other partners. However, the value it brings to customers through its sophistication and robust features justifies the price.

The cloud providers used by my customers predominantly include Microsoft 365 for email solutions and Azure infrastructure, with some opting for AWS for specific solutions. I would rate this product overall an 8 out of 10.

Public Cloud

Microsoft Azure

In our organization, we use Proofpoint Email Protection as an email gateway that tracks all external emails coming to our organization. In this way, we are protecting our organization from cyberattacks and all suspicious emails coming from external senders.

We have had situations where we monitored logs in which suspicious emails came from spoofed senders. For example, an email appeared to be from axis.com, but it was a spoofed email. When it came into our organization, it was initially quarantined at Proofpoint Email Protection gateway, so the user did not receive it. When we checked the log, we found the actual case. We identified the spoofed sender and blocked it in Proofpoint Email Protection console. Once we blocked it in the console, that sender and domain will never get past Proofpoint Email Protection gateway.

In day-to-day operations, we mainly use Proofpoint Email Protection to protect our organization from external senders. We developed a ZAP policy, a spam detection policy, and several other policies in Proofpoint Email Protection gateway. By using these policies, we are running the business very smoothly and maintaining and providing very safe email communication to our clients. We received considerable appreciation from Proofpoint team for this.

Proofpoint Email Protection has significantly strengthened our organization's email security posture by detecting and preventing advanced threats before they reach users.

Proofpoint Email Protection identifies and triggers on all emails. Even when there is a false positive case, when an external sender tries to send an email to our organization, Proofpoint Email Protection detects if it is suspicious, such as when there are bulk attachments or the email is sent to bulk recipients. Proofpoint Email Protection has helped us significantly by detecting those bulk attachment emails and quarantining them in Proofpoint Email Protection console as spam. By our client's request, when we investigate why Proofpoint Email Protection quarantined it, based on the client's requirement and their business justification, we have adjusted the spam score for that external sender. Because of that adjustment, the user received the email. Spam emails are very crucial regarding data leaks in day-to-day operations, and Proofpoint Email Protection helps us detect those spam details, which has helped us very much.

We appreciate the external warning tag feature. When an external sender sends emails to our organization, Proofpoint Email Protection adds an external sender tag that states "Be cautious, this email was received from an external sender." This tag suggests to our recipients that they should open attachments after careful observation. It has helped our clients very much. We also appreciate the policy configuration feature, which provides numerous customization options.

Proofpoint Email Protection protects employees from phishing, spoofing, malware, and harmful URLs all before they reach the inbox. The platform combines intelligence, automation, and ease of use, giving businesses confidence that their communication channels remain secure without slowing down operations. Proofpoint Email Protection delivers consistent accuracy while maintaining smooth business email flow. The URL Defense and Attachment Defense features provide advanced protection by analyzing and blocking harmful content in real-time. The dashboard and detailed message tracking with smart search options empower security teams with quick insights, faster investigations, and better decision-making.

We majorly detect phishing incidents when a suspicious sender sends emails to our recipients.

We did not notice much room for improvement. Everything was organized and fixed smoothly. We have not detected any objections or defaults in Proofpoint Email Protection. The solution has been helping us significantly.

Regarding features, when Proofpoint Email Protection gateway blocks false positive senders as spam due to confidence level, and when it is a false positive with a request from the user to release it from quarantine, we have to adjust the spam score for that sender to avoid this blocking and quarantining in the future. To adjust the spam score for such cases, we have to reach out to Proofpoint Email Protection community team. If spam score adjustment were available in Proofpoint Email Protection console itself, it would be helpful for us to adjust the spam score from our admin side to make business processes faster. We are requesting Proofpoint Email Protection support team to provide this capability, as the current process requires extra time. This is our only concern and not a request for improvement, as this control was introduced for our security reasons. We are providing this feedback as an update.

Operations are going smoother without any conflicts after updates in Proofpoint Email Protection console. Everything has been going well for us. We did not notice any issues in the logging section either.

Proofpoint Email Protection is a stable and reliable solution. From an operational standpoint, we observed consistent email flow with minimal disruptions, and the platform handled high email volumes efficiently. We saw very few unplanned outages or performance issues. The features including message tracking, quarantine management, and threat dashboards work consistently, which is critical for daily security operations. Overall, Proofpoint Email Protection is a stable platform suitable for enterprise-level email security.

Proofpoint Email Protection is highly scalable. We can handle larger email flow without significant issues. The platform handles large email volumes, supports multiple domains, and expands easily without major infrastructure changes. Since it is cloud-based, scaling is mostly configuration-driven rather than hardware-dependent.

We mainly use support for spam detection and when there is a reason why emails got quarantined. In those cases, customer support offered us very good assistance. Proofpoint Email Protection support is reliable with good response times for critical issues and strong technical assistance. We are satisfied with the customer support.

Previously, we used Microsoft 365 services and Office 365. The primary reason for switching to Proofpoint Email Protection was the need for more advanced threat protection. While Microsoft's native tools provide a solid baseline, we found that Proofpoint Email Protection offered stronger targeted attack protection, especially for personalization and phishing, better URL Defense with time-of-click protection, more detailed threat intelligence, and visibility into attack campaigns. We previously used Microsoft Defender for Office 365.

We chose Proofpoint Email Protection only after transitioning from Office 365.

In my role, I was not directly involved in pricing or commercial negotiations, but I have some visibility from an operational perspective. The initial configuration requires careful planning, especially around email routing, policy tuning for spam, phishing, and DLP, user onboarding, and integration with Microsoft 365. Overall, while the cost may be higher, the value comes from strong threat detection, reduced risk, and centralized management.

I have worked with Unified Admin Console and Threat Protection Workbench primarily in managing email security operations, especially in a Proofpoint Email Protection and Microsoft 365 environment. From my experience, the unified console is quite effective because it centralizes visibility across different security layers including email threats, user activity, and policy management. This makes it easier to investigate incidents without switching between multiple tools. Threat Protection Workbench is particularly useful for analyzing phishing or malware campaigns. The interface is generally user-friendly once you are familiar with it. However, initially, it can feel quite complex due to the amount of data and filtering options available. Sometimes fine-tuning searches or correlating events across multiple alerts can take extra time. Overall, it is a powerful tool for proactive threat hunting and incident response, and with experience, it becomes much more efficient to use.

I have worked on security controls for cloud apps and file-sharing services, mainly with Microsoft 365 and email security environments. I have implemented and monitored policies around safe sharing and access controls, such as restricting external sharing and malware and phishing protection for files and links. This includes URL and attachment scanning for files shared via email or collaboration tools. In terms of impact, it significantly improved our security posture. We were able to reduce data leakage risk through controlled sharing and detect and block malicious files before they reach users, and respond faster to incidents using centralized monitoring.

My advice would be to approach Proofpoint Email Protection implementation with proper planning and clear security objectives, especially regarding policies for phishing, spam, and DLP. Proper tuning at the start reduces false positives later. It is important to continuously monitor and fine-tune policies based on evolving threats and user behavior. Overall, Proofpoint Email Protection is a strong solution, but its effectiveness depends on how well it is configured and managed by the organization.

As a business relationship, our organization's relationship with Proofpoint Email Protection is purely as a customer. We use the platform for email security operations, but we are not a partner. My involvement has been on the operational side, monitoring, managing policies, and handling incidents rather than vendor relationships. We are only a customer.

Proofpoint Email Protection is a strong and reliable solution for defending against advanced email threats, especially phishing and targeted attacks. The strengths of Proofpoint Email Protection include advanced threat detection capabilities, strong visibility into email-based attacks, and effective tools for investigation and response. An important point is that its effectiveness depends on proper configuration and continuous tuning, along with user awareness. When implemented and managed well, it significantly strengthens an organization's email security posture. I have given this solution an overall rating of nine out of ten.

Hybrid Cloud

Other

Proofpoint Email Protection serves multiple purposes for our organization. We use it as an antispam solution, and while I am a user with some insight into the configuration rather than the administrator, my team helps the admins configure it to function as an antispam system. However, we primarily use it for detecting malicious emails that pass through the antispam layer.

The antispam layer is realized through the Email Protection section. We use the TAP dashboard extensively, along with the Threat Response part and the Report Suspicious Email button, which is a complementary product of Proofpoint known as the phishing button. We utilize all of these tools together.

Using Proofpoint Email Protection has successfully reduced the volume of emails that we need to review. It performs exceptionally well as both an antispam solution and as a layer that functions after the antispam when a user recognizes something suspicious or when it automatically detects something it previously allowed and notifies us on the platform. Everything is centralized, and the reaction time from there is very fast. The time to analyze an event overall is significantly reduced compared to before.

Regarding the time to respond to threats, it has improved with Proofpoint Email Protection's visibility and automation. The platform offers a centralized dashboard that allows us to select filters for all emails according to our constraints in that moment and manage many emails simultaneously. We had this capability before with Cisco, so the reaction time has improved as well.

The best features in Proofpoint Email Protection that I appreciate most are the capabilities to manage reports from users very effectively. When a user receives an email they believe is malicious and clicks on Report Suspicious Emails, the platform demonstrates very strong and granular capabilities to manage all these emails automatically, or if desired, we can also conduct further manual review. This is a very powerful tool from this perspective.

Proofpoint Email Protection has influenced the quantity of threats that our organization needs to protect against. We have largely covered this point already because Proofpoint functions as an excellent antispam filter and, combined with the closed-loop email analyzer that integrates the analyzer from the phishing button, the Threat Response, and the auto-pull capability, it automatically manages clusters of emails. The result is obvious.

Regarding improvements or enhancements in Proofpoint Email Protection, I find the platform somewhat chaotic. It has too many different sections that perform the same function, which is very confusing. If someone does not use the platform every day, which is normal for a SOC analyst because there may be rotation within the team and analysts do not always perform the same tasks, this is common in a Security Operation Center team. I would prefer the platform to be somewhat more simplified.

If asked about missing features in Proofpoint Email Protection, I believe the platform is generally good overall. Small improvements are always possible. The platform may lack some intuitive elements, which is consistent with the chaotic aspect I mentioned earlier. For instance, when opening an email on the platform that Proofpoint indicates is malicious, the platform states that this is a malicious URL or malware, but the question arises of how one knows this. Security analysts need much more technical details about the actual threat, and the platform does not provide such details. I do not know if this is because our company is very large and has both on-call and on-premise components, which might not work as well in such complex environments.

For instance, we often have difficulties retrieving emails when the platform indicates an email contains malware but we cannot retrieve it automatically with the trap. We must retrieve it manually and analyze it, but the platform often does not allow us to do this. We must proceed in other ways, such as contacting a forensic team and requesting extractions. Small improvements that could ease the analyst's life could be made.

I have been working with Proofpoint Email Protection since our organization adopted it in the last year. We are relatively new to the platform and have been using it for approximately six to seven months.

Regarding the stability and performance of Proofpoint Email Protection, I have not experienced any crashes, downtimes, or performance issues. When there are temporary problems with the platform, we always receive communication from Proofpoint. I believe they are reliable from this perspective.

Proofpoint Email Protection is truly scalable. As I mentioned, our organization is quite large, actually a group of companies, and we have adopted it for most of the companies. It works really throughout. Scalability is one of the positive points.

I would evaluate the customer service and technical support team of Proofpoint Email Protection as reasonable. I was not directly involved but was involved in some email threats when we contacted support. I did not have much direct interaction with support, though it was more during the setup phase of the product. Since we have been using it for a few months, we found a feature called email deduplication that should work in a certain way but is not working. We asked for information, but the information never arrived to us. I do not know if this was an isolated episode. I have not had many interactions with support. I am familiar with support teams in general from other software companies I use, and often support teams are not particularly brilliant. I see something similar in Proofpoint as well.

Neutral

Prior to adopting Proofpoint Email Protection, we used Cisco ESA, which is the antispam solution from Cisco. We had it for approximately four to five years before transitioning to Proofpoint.

The experience with the initial setup process of Proofpoint Email Protection was mainly with the administrator of the platform. We were involved only in certain points where decisions depended on us. I honestly do not know how the setup process went.

I was not involved in the evaluation process for Proofpoint Email Protection because our organization is very structured, and for all these aspects, we have a dedicated team. We have a team for procurement, a team that scouts for solutions, a team that configures the solutions, and then we are often simply users. Regarding whether we had an internal team working or used any integrator, resellers, or consultants for the deployment of Proofpoint Email Protection, I do not have that information.

We decided to switch to Proofpoint Email Protection because we were not satisfied with Cisco. It appeared to be an old platform and somewhat chaotic. Proofpoint is also somewhat chaotic, but Cisco was significantly more chaotic than Proofpoint. Additionally, it did not function as well as an antispam filter.

Proofpoint Email Protection's scope and range of threat protection capabilities address modern security challenges effectively as it performs very well for the email layer. We use it for that purpose. As far as I know, the platform also includes capabilities for phishing website takedowns, though we do not currently use that feature. Proofpoint actually covers the email layer comprehensively for the cybersecurity aspect, from antispam to the takedown of phishing websites to proactive research of internal threats on the email layer. It performs well, but it is limited to the email layer.

Regarding the level of visibility that Proofpoint Email Protection provides into people-based risk within our organization, in the Threat Protection Workbench there is a section for examining risks associated with people. We mostly focus on threats and look at this from that perspective. These are two sides of the same medal. We can look from one perspective or the other and end up with more or less the same finding. We actually use the threats part in the Threat Protection Workbench, which is also found in the TAP dashboard. That part is really effective because it automatically scans emails inside the company to find suspicious things that it did not previously identify.

Regarding messaging security for protection across cloud apps and file sharing services, we do not use that feature.

Based on my experience with Proofpoint Email Protection so far, I would recommend it as a tool because we are satisfied with it.

Proofpoint Email Protection is strictly used for email protection in our organization. Approximately 2,500 users are using Proofpoint Email Protection. The usage varies across our environment since we have users who share computers in our stores as well as corporate users, so Proofpoint Email Protection is deployed across multiple different environments within the company.

One of the bigger features I appreciate in Proofpoint Email Protection is the personal digest for end users, which allows them to set up who they want to block, who they do not want to block, and whether they want to allow certain spam emails to come through.

Maintaining Proofpoint Email Protection is fairly straightforward. The primary maintenance task involves ensuring that items caught by Proofpoint are items we actually want to catch. When certain emails that should come through are blocked, we implement exclusions and manage rules at a mass scale, such as when leadership wants the entire environment to receive a specific email that is being blocked. This occurs very rarely, but it does happen occasionally.

Proofpoint Email Protection has minimal impact on our SOC analysts. If anything, it provides them with more time to focus on matters that are actually relevant. Since we still have user-reported emails in our environment, allowing Proofpoint Email Protection to catch the bulk of threats gives our SOC analysts time to focus on emails reported by actual users that may have been missed by Proofpoint. This is a significant benefit in catching potential true positives and helping us educate the environment on what constitutes normal spam versus concerning threats.

The visibility that Proofpoint Email Protection provides regarding people-based risk within the organization is good. The data it provides could be a little bit cleaner. There is simply a lot of data that comes in, so sometimes narrowing down those users who need more assistance with reporting or understanding their email behaviors can be a bit daunting. For the most part, Proofpoint Email Protection is a very straightforward application, and being able to find emails and understand what users are doing with their emails and how they are interacting with them is fairly straightforward and easy.

Having the main console for Proofpoint Email Protection has been beneficial. I have not had much experience with the unified console, so I cannot comment on it directly. From what I understand, if they have moved from multiple consoles to a single console, that would be a huge benefit, as having to go through multiple consoles to get the same data or information was daunting.

Everything with Proofpoint Email Protection has room for improvement in my opinion. One of the challenges I have dealt with is that searching for an email can be a little bit difficult. Overall menu navigation in their consoles would be improved if it were more straightforward regarding where to go to search for an email, where to access the containers or buckets, and how to put in new rules. These areas could be more user-friendly and less complicated.

I have used Proofpoint Email Protection across multiple companies over a span of at least ten years.

Proofpoint Email Protection rates as a nine in terms of stability.

Proofpoint Email Protection rates as a ten for scalability.

I have used Google before with Proofpoint Email Protection and we have switched from that to Proofpoint. I have used Microsoft to a lesser extent, not as in depth as Proofpoint. I have also used something called FishMe, which is a smaller company, but we have used them before as well.

I cannot speak to how Proofpoint Email Protection was deployed at my current company because I was not present for that deployment, as it was set up right before I came on board. At my last company, the deployment was fairly straightforward with Proofpoint Email Protection and not overly difficult. The hardest part was making the transition from how we had our previous email protection set up and allowing that to work in a similar manner within Proofpoint, but that was the extent of the challenges.

Proofpoint Email Protection was a direct purchase. We worked with Proofpoint to obtain pricing and conduct a proof of concept to ensure it would work and fit in our environment. Fortunately it did, and we decided to stay with it after the proof of concept was completed.

A reduction of approximately fifteen percent across the metrics I mentioned is probably a fairly accurate assessment.

I definitely think a proof of concept is the right approach for implementing Proofpoint Email Protection to ensure that the tool accomplishes the goals you want to achieve within your environment. Every environment is different, and while Proofpoint Email Protection is adaptable, there are sometimes other options available that might be more cost-effective and can accomplish the same level of security without having to adopt something as broad as Proofpoint Email Protection.

Proofpoint Email Protection is good, and the company has a strong understanding of what is needed for email protection and security. They seem to do a good job of providing regular updates, as they use a trained AI model to catch threats and help analyze emails. They provide a good amount of regular updates with definition changes to allow for more accurate capture of malicious and potentially malicious emails coming in.

Proofpoint Email Protection is really good at what they do within their email protection niche. Navigating toward a single solution to handle everything can be seen as a detriment in my opinion. Having Proofpoint Email Protection as a dedicated email protection service is the biggest benefit they offer. My team and I are always looking for ways to consolidate, but it comes down to dollars and cents and what makes sense for the environment.

There have been very little changes that I have noticed in operational efficiency with Proofpoint Email Protection. However, I do not handle Proofpoint Email Protection from the perspective of being the engineer in charge of it; I only provide backup assistance when needed. I have seen a reduction in how much time our SOC analysts spend on false positives and a reduction in how many spam emails are reported by users outside of Proofpoint Email Protection. This definitely helps with time management and resource management internally.

For investigations with Proofpoint Email Protection, I would estimate approximately ten to fifteen percent improvement, as things are much easier to find and the data is much easier to access in Proofpoint Email Protection, especially if we have sender information and other relevant details. This has definitely sped up that process.

Consolidation of tools is always difficult because it is hard to say that one tool can do everything perfectly, especially when working in a large environment.

I would rate this review overall as an eight out of ten.

Public Cloud

Microsoft Azure

My use cases for Proofpoint Email Protection revolve around its design for email protection and information protection, especially if you want to implement DLP policies. Proofpoint Email Protection is an excellent tool for identifying spammers and phishing emails. Depending on purchasing power, Proofpoint Email Protection offers various protection levels, such as basic, advanced, and very advanced options. As per customer requirements, Proofpoint Email Protection is customizable, providing features such as email authentication, email defense, and spam detection. Email administrators can analyze and enhance their security measures using Proofpoint Email Protection.

In terms of email protection, my experience is primarily with Proofpoint Email Protection, while I have also used Microsoft Defender and earlier utilized Mimecast. I have expertise in both Mimecast and Microsoft Defender but considerably more experience with Proofpoint Email Protection.

I do not use file sharing with Proofpoint Email Protection; my focus is solely on email protection and DLP policy for information protection.

Proofpoint Email Protection's best feature is the rare occurrence of spam emails; it occurs very occasionally—once in a while each year. This excellent feature means we do not frequently encounter phishing emails, as Proofpoint Email Protection continuously updates virus definitions responsible for protecting the environment.

Proofpoint Email Protection provides high visibility into people-based risk, allowing users to define spam scores, so if a score of 98% is set, emails above that threshold should not reach users. Users can assess the legitimacy of emails, marking them as block or safe senders. Additionally, Proofpoint Email Protection guides users through training to help them identify which links to click.

As a SOC analyst, using Proofpoint Email Protection simplifies my workload by configuring email alerts; anything happening triggers alerts that come through quickly. I can easily analyze logs and customize options as per my organization's needs, allowing me to manage audit requirements efficiently.

Using Proofpoint Email Protection significantly reduces the number of threats I need to guard against; within a month, my organization sends and receives over 1 million emails, achieving 99.99% protection against phishing and spam, and handling around 5 to 10 million emails monthly while assigning a project manager for ongoing review.

Regarding Proofpoint Email Protection's capabilities in addressing modern security challenges, I assess it as excellent; it does not let phishing or spam emails bypass its defenses and is very strong.

After implementing Proofpoint Email Protection, I have noted improvements in operational efficiency due to their excellent support, which is prompt and responsive, often resolving issues within one or two hours, unlike other providers such as Microsoft, which has poor support.

In the future, I would like Proofpoint Email Protection to implement a search feature, enabling users to find specific threats easily. I suggested this to my Proofpoint Email Protection support during a meeting, and they mentioned it would be forwarded to development.

I have worked with Proofpoint Email Protection for around 10 years.

I have not experienced performance issues or limitations with Proofpoint Email Protection's stability and scalability.

I have not experienced performance issues or limitations with Proofpoint Email Protection's stability and scalability.

Proofpoint Email Protection's initial setup experience is straightforward; it typically requires setting SPF and MX records, with support available during the setup process, usually completed within one to two hours.

I rate the tech support of Proofpoint Email Protection as a 10.

Proofpoint Email Protection's initial setup experience is straightforward; it typically requires setting SPF and MX records, with support available during the setup process, usually completed within one to two hours.

The pricing of Proofpoint Email Protection generally ranges from about five to seven dollars per user per month for advanced protection, which includes most features.

Although the pricing of Proofpoint Email Protection is somewhat high compared to products such as Mimecast, when it comes to security, sometimes cost should not be a factor.

I advise organizations considering Proofpoint Email Protection to assess their requirements since Proofpoint Email Protection offers different models starting from two dollars for basic protection. For sophisticated features such as TRAP, if a suspicious email passes through, Proofpoint Email Protection quickly identifies and removes it from the user's inbox, a capability that has recently been implemented.

My organization coordinates directly with a sales team that works with Proofpoint Email Protection support to purchase Proofpoint Email Protection.

I would rate Proofpoint Email Protection as a 10 out of 10; it excels as a product and solution.

I find Proofpoint Email Protection particularly effective for financial institutions and health insurance; I recommend it in such critical situations. For less sensitive data, organizations might choose Microsoft Defender to save costs. However, for highly sensitive data, I endorse Proofpoint Email Protection, as cost should not be a concern.

If you follow Proofpoint Email Protection's policies as per design, there are no downsides, though they have recently implemented AI features that were lacking a few years back. For example, through cloud providers, Proofpoint Email Protection uses TRAP and AI algorithms. Proofpoint Email Protection is number one in the market for email security, as even Microsoft Defender falls short in comparison. My overall rating for Proofpoint Email Protection is 10 out of 10.

Public Cloud

Microsoft Azure

In my environment, I am using Proofpoint Email Protection for advanced email threat protection. For malware, spam, and virus protection, we are using their email protection module and security module. I determine all policy routes, and all DKIM, DNS, and DMARC records are being managed by Proofpoint for us at the moment. Proofpoint Email Protection is our primary email server gateway for inbound and outbound communication. The MX is pointing to Proofpoint, and Proofpoint Email Protection is acting as the first point of contact for anything coming from outside to our internal users.

I purchased Proofpoint Email Protection through marketplaces. For a couple of years, I completely relying on Microsoft Exchange before adopting Proofpoint Email Protection. After that, I conducted many POCs with Proofpoint and then we recognized Proofpoint and started with Proofpoint on-premise, then I moved to Proofpoint on Demand, and I secured their TAP module, which is the advanced threat protection module. I then moved on to their threat response auto-pull module, and I also opted for the email fraud defense module. I currently have Proofpoint secure email relay, which we are using, and we gradually purchased their license for approximately 3,000 users for their security education platform, which is the Zen-Guide platform. All their modules are connected to each other and communicate very nicely with each other. If a threat is detected after it is delivered to the user's mailbox, Proofpoint Email Protection will still be able to detect it and the threat response will auto-pull it from the user's mailbox, which is a unique feature that I found absent in Microsoft. I have had a very good relationship with Proofpoint Email Protection over the last four years using almost all their available modules and products, and I am talking about using their adaptive email DLP in the future.

I would say the accuracy of Proofpoint Email Protection is valuable. When I compare it particularly with Microsoft, I am very impressed by the accuracy, the machine learning, and the detection algorithm that they have. I find it very accurate, which reduces a lot of manual effort that we used to perform when we were using Microsoft. In terms of detection of spam, malware, and virus, the detection is 99.9% accurate.

Proofpoint Email Protection offers a SaaS-based deployment model, which is Proofpoint on Demand, and it is on the cloud. Earlier, false positive emails getting quarantined and legitimate emails getting trapped used to be a lot of manual effort. My team was manually spending a lot of time analyzing and releasing those emails. Since we have started using Proofpoint Email Protection, we have seen a huge drop in that number. Earlier, my team was spending five to six hours a day going through those quarantine emails, and now that effort has reduced to just one hour. We are not seeing that many false positives. The user reporting feature is also great because it logs an incident and initiates an investigation based on the verdict, which reduces manual overhead. The TAP overview provides all the necessary details needed to decide whether to release or block emails.

When I log into Proofpoint Email Protection admin portal and look into the dashboard, it provides a list of all the VIP users, what sorts of emails they are receiving, and how they are interacting with those threats. We have visibility on the click rate for bad URLs or attachments in emails, how many people have interacted with those emails, and details about attachments sandboxed or not. The dashboard provides a lot of customization, allowing us to analyze how users are interacting with threats, and if there is a real threat, we have the visibility to create phishing simulation campaigns based on those scenarios.

I would like to see improvements in the transition from Proofpoint Protection Server to Proofpoint on Demand because Proofpoint Protection Server is not very user-friendly and requires logging into two portals for some features. I also believe customer service can improve, particularly by having immediate follow-ups for higher priority issues.

I have been working with Proofpoint Email Protection for approximately four years.

I find Proofpoint Email Protection very stable. I have not experienced any downtime or outages in the past couple of years. They communicate scheduled maintenance in advance, which allows us to prepare.

I find that Proofpoint Email Protection is very scalable, and it is easy to scale it up or out.

I would rate customer service for Proofpoint Email Protection as 6.5 out of 10 because they have many areas to improve on.

Neutral

For a couple of years, we were completely relying on Microsoft Exchange before adopting Proofpoint Email Protection. After that, we conducted many POCs with Proofpoint and then we recognized Proofpoint and started with Proofpoint on-premise, then we moved to Proofpoint on Demand, and we secured their TAP module, which is the advanced threat protection module. We then moved on to their threat response auto-pull module, and we also opted for the email fraud defense module.

I have been completely involved in the initial setup process for Proofpoint Email Protection, and I handled everything single-handedly.

We engaged professional services for the deployment of Proofpoint Email Protection, and they guided us well throughout the process, providing clear documentation and support. I did not encounter any issues, and we smoothly transitioned from a lower environment to our production environment. We worked directly with Proofpoint for the deployment. We paid for their professional services, receiving dedicated support throughout the implementation.

There were a couple of other solutions that we explored but they did not meet our requirements. We actually wanted two layers of security, so the first layer of defense to be Proofpoint Email Protection and then to keep Microsoft as well. The integration and API provided by Proofpoint Email Protection were very smooth, which was not offered by other products we considered.

My recommendation for other organizations considering Proofpoint Email Protection would be to refer to the recent Gartner report indicating that out of 100 Fortune companies, 84 are using Proofpoint Email Protection. It is the best in the market, and I encourage others to adopt it for its reliability. I would rate this review 8 out of 10.

Public Cloud

Other

Proofpoint Email Protection is used for the email gateway for spam filtering, malware filtering, malicious email handling, and the secure email relay platform.

Proofpoint Email Protection has a different component called the TAP alert, which has two parts: malicious message defense and URL defense. This component is utilized to check if any URL delivered to users' mailboxes is legitimate or not based on the Proofpoint Email Protection TAP component. When a URL is received, Proofpoint checks it in their sandbox and attempts to execute those URLs. If there is anything malicious, Proofpoint informs us, and based on that, we can act by whitelisting or blacklisting depending upon the Proofpoint Email Protection component.

Proofpoint Email Protection is used with a secure email relay feature that has been purchased. Secure email relay allows external email relay using Proofpoint with authentication, ensuring that no malicious email or flood of spam reaches users' mailboxes.

When receiving lots of emails from a particular vendor or mailing list, quarantine and deliver is used. The mails are delivered, but the copy is quarantined. The quarantine mail in a quarantine folder is available for analysis, where message header analysis and source analysis can be performed, as well as hash checks against static and dynamic malware engines. This approach does not disturb users from getting the emails while also evaluating those emails if any kind of malicious emails are being generated and delivered to users' mailboxes. Quarantine is a great feature.

Proofpoint Email Protection has a smart send feature with an offensive word and dictionary feature. In the dictionary, you can stop the imposter attack to your organization for the VIP users.

Proofpoint Email Protection is a market leader for spam defense model and malicious email defense model. First of all, the Proofpoint Email Protection spam engine itself is mature enough to handle this. Apart from that, it provides a brick model where you have a policy route, where you have a condition and where you have the disposition. Based on the severity of the cases, you either need to quarantine, redirect, or reject. You have a quarantine folder where you can do the analysis. Proofpoint Email Protection is a quite well mature product where you will get everything as a security, cybersecurity, email security expert.

Proofpoint Email Protection has saved our infrastructure from any kind of malicious attack. By using its components such as TRAP (Threat Response Auto-Pull) and TAP (Targeted Attack Protection), we are also mitigating those attacks which get delivered to users' mailboxes without any delay. Proofpoint Email Protection is a great security tool that is not only proactive but also reactive on a case-to-case basis and provides all the mature tools that can be utilized for the first layer and second layer message defense.

Our response time has improved because we are using TRAP (Threat Response Auto-Pull), which pulls the emails from users' mailboxes if any malicious email gets delivered. It improved our time. Earlier it was a complete human activity. Now, it's a tool-based activity, and so there is less chance of human error. Proofpoint Email Protection is a human error-free malicious email defense system.

The workload to our SOC has been reduced when we implemented Threat Response Auto-Pull because they are now only focusing on other things. The false positive alerts are also reduced. TRAP and TAP are making a positive impact.

Proofpoint Email Protection is not a normal traditional email protection tool; what it does is know about blacklisted IPs, blacklisted emails, and the behavior of spam. But this is changing day in and day out. Proofpoint Email Protection provides real-time scanning of the mails and real-time scanning of the URLs. If anything is not declared as blacklisted or malicious, it does a sandbox analysis. Based on the sandbox analysis, it triggers an alert that indicates whether the mail may be legitimate or the mail has some malicious activity. TRAP is another tool, which triggers a pull to users' mailboxes. It creates complete user efficiency as a proactive and reactive tool which we achieve through it.

Our malicious response has improved by 90% when we are using the TAP and TRAP together.

Proofpoint Email Protection has a limitation regarding third-party tool integration and SIEM integration. Even though it provides a SIEM integration from Sentinel, the reporting is still being evaluated at admin.proofpoint.com where you are getting a nice report. However, if you are using a hosted infrastructure, reporting is also a lagging feature. Additionally, Proofpoint Email Protection is a rule-based system. For every kind of situation, you have to define a rule, and it will not be able to generate defense against generative AI alerts. Nowadays, hackers or spammers use generative AI, so it needs to become mature enough to handle those kinds of things, but Proofpoint Email Protection is working on that.

Modern security challenges, such as AI-related challenges, are areas where Proofpoint Email Protection needs to do better. If you think about rule-based challenges, Proofpoint Email Protection is doing well with its databases. However, if any threat is GenAI related, Proofpoint Email Protection needs to do much better there.

I have been working in this current field for the last seven years.

Proofpoint Email Protection is a quite stable product, and if we need to add resources, we can add them because it's a Linux-based product.

Proofpoint Email Protection is a scalable product. If you need to add resources, you can add them. It's an appliance, and somehow it is integrated with Sentinel too. If you need to do any modifications, you need to call Proofpoint support. They join the call, and based on root access, we can modify.

Proofpoint Email Protection supports are quite good. They have outstanding customer support. Whenever they join the call, the engineer knows what to do, what the problem is, and they fix it. They do not route tickets here and there. Their customer support is top-notch.

Proofpoint Email Protection gives you a professional service experience when you choose to set up with Proofpoint engineers. They are quite good, and the licensing is competitive with the market. You need to raise a case with Proofpoint, and their engineer will join the call and will help you to set up each and every component.

There is a financial benefit because we are using a single pane of glass where we have all components. We know what capabilities our tools have and how they integrate with each other. Based on that, we subscribe to Proofpoint Email Protection services, which is not only saving money but also enhancing the capabilities of the tool when it works together.

If you want a mature market leader spam and threat detection tool, Proofpoint Email Protection is without a doubt a market leader. I give this product a rating of 9 out of 10.

On-premises

Other