Perception Point Advanced Email Security Reviews

It's our mail relay system. We are using it to filter all our incoming emails. It's also a security platform for our SharePoint and OneDrive.

The main benefit to our company is the reduction of risks with the potential to evolve into more complex security events. The solution stops those risks before they get to the end-user. We saw, when using other solutions in the past, that some of the emails that are blocked today were passing through. The overall effectiveness of this security solution is much better.

Also, our SOC team is quite minimal, so it's very helpful for us to have an external team that assists us with handling incidents. We don't have the time or the resources to handle all of them. We are currently evolving our teams and their SOC team is more effective when reviewing things. It saves us time because we don't have to do anything within the system. We can just reach out to their IR team and they will investigate and take the relevant action. It reduces some of our load.

Their portal is very convenient, very easy to use, and very good for managing. The portal also provides a great investigation process, where we can open a ticket for each email that we think should get a second opinion. Their Incidence Response team will respond.

The solution can pull emails that have already been marked as malicious from the mailboxes. Their security engines are very effective at stopping malware and potential attacks before they reach a user's mailbox. They have the best detection engine.

When it comes to the scale of scanning, the solution looks at each email, the body and each attachment, to try to detect potential malicious links or macros. It scans everything. We feel very comfortable with that. It will not miss any email. Other companies' security engines sometimes decide on their own what should be fully scanned and what should not. With Perception Point, this is not the case. Everything is fully scanned.

They could improve their anti-spam engine a little bit, because there are a lot of false positives. Sometimes, emails pass through their system but are spam. In terms of security and engines for malicious emails and antivirus, they're doing a good job. Their other engines can be improved.

This is something we discussed with them before we purchased the solution. We discussed their roadmap with their product team. The spam engine is something that they're working on. We know that their spam engine is going to improve in the very near future.

We also spoke with them about a change to the GUI so that we can release more than one email at a time. Also, if we want to open investigations into a few emails, we need to go into each email to open the investigation. When we have done onboarding within our company, there have been times when we had a lot of email that we needed to whitelist. It took a lot of time to go into each email and open a ticket. It would help if they added a feature where we could add similar emails, or more than one, to a ticket for the IR team.

We have been using Perception Point Advanced Email Security for almost three months.

So far, we have not had any problems. We know that before we went with the system there was some downtime, but we haven't had any issues.

We are not aware of any issues with scalability.

We are protecting about 3,000 mailboxes, and growing. Part of our plan is to increase our usage of Perception Point. We have additional companies that we are working on migrating and we plan to move their email traffic under this umbrella as well.

They provide good support. If we have a problem, we create a ticket in the Perception Point system. And if there is something that we don't think can be handled through the portal, we can call or email or WhatsApp our customer success manager and everything works. He replies very quickly.

Positive

We switched from Symantec Mail Security. The reason we moved forward with Perception Point was the security portfolio. We were impressed with how very effective it is.

The initial setup was straightforward and easy. It didn't take a lot of time. If you want to add some domains, the whole process takes a maximum of one hour. We worked with their customer success manager and he was very responsive to us and available most of the time. We have a large company with a lot of mailboxes and in the first few days of the integration we were in direct contact with him by WhatsApp, by emails, or by phone. The integration process went very smoothly.

We were able to move from Symantec to this solution in one week, and the time to value was from the moment we started to use Perception Point. 

You don't measure security products on return on investment.

The licensing mechanism is fine. It's quite standard. The pricing was fair in comparison with the other solutions. We have received good value for what we paid.

We tried to use IronPort and Microsoft. We selected Perception Point because we liked their engine for detecting malicious emails. We also liked the GUI and the easy setup. Besides the effective security, which was a major part of our decision, we also thought that the total cost of ownership of the product would be better for us, as we are a very small team. Another factor was that it included SharePoint protection and that was an extra feature not available in other solutions that were just anti-spam systems.

It's hard to compare the detection rate among these solutions because all of them are doing a good job.

The best part of Perception Point was that the system is already configured for best practices. It does the job as well as it can be done. When we tried other solutions, they had to be configured down to the smallest details. And if there are any changes in the environment, we would always have to be ready to change the system configuration. Again, because we're a small team, we felt that it would be better for us to go with a system that is configured optimally.

Consider Perception Point. It is a very young company and it's evolving, so you need to be aware of that.

Some companies use it as a second tier of protection, not as the first tier like we do, because they have an additional product that does the initial filtering.

Check the solutions you are looking at against any additional needs you have because not all platforms provide the interfaces that might be required for some organizations.

If you go with Perception Point, you need to work with them to make sure you fine-tune your policies with their IR team, especially if you have an evolved SOC team. You need to make sure you coordinate efforts and that policies and decisions are made according to what your company requires.

We route all of our inbound emails through Perception Point to have it scan for malicious files, malicious URLs, spam—all the attack vectors that can be used via email. 

We're also using it as a sandbox, which is a new feature we started to use in the last two quarters. We use their API to send files and URLs for investigation to the Perception Point sandbox. Based on the verdict, we take action. If it's clean we keep it in the system, and if it's malicious we delete it from our system.

Perception Point has helped to reduce our false positive rate by a very good percentage, on the order of 80 percent. It has also absolutely helped to reduce the number of alerts received, by something like 95 percent. As a result, we have to manage fewer incidents due to emails containing malicious files. If the EDR is detecting it, you need to investigate it and, in some cases, to isolate the device and reimage the device. In terms of our operations, it has reduced the workload by a lot.

Almost everything is a valuable feature. Among the most important are the sandboxing and the levels of pattern and sophisticated techniques they are able to detect. As far as I know, and I've worked with another product before, Microsoft Defender for Office 365, other products are not able to detect those kinds of malicious files or URLs. Perception Point is our second layer, and it always catches them. 

Another feature that we really like, one that was introduced a few months back, is the way it categorizes threats into groups, such as Emotet, Qbot, Formbook, and the like. It's not only telling you that something is malware, but it's also giving you insight into what kind of malware, which category tried to exploit you. For a security team, this kind of information is very critical because it's a type of intelligence. You understand what you are facing and whether you are a target for a specific group of threats, and you can defend better against them.

And something that has really improved in the last few months is the Incident Response team, which comes as part of the service. The SLA is really amazing. This was the biggest advantage. When you are working with MDO or Proofpoint, for example, you will never speak to a human. You can open a case and they will reply, but we have a Slack channel with Perception Point. We can reach out to them and they answer immediately, meaning within five and 30 minutes. For us, that's like real-time when working with a vendor.

The main goal of the Incident Response team is responding to incidents, of course. But the way we use them is that when we identify a false positive, we ask them, "Hey guys, can you check why we got this false positive?" They do a great job checking and fine-tuning as a result, so that the next time it will pass through. The same goes for a true positive. What is unique about the product is that, in the end, it's not only a machine, rather there is also human interaction. A human will sometimes go over the tagging and decide that the system gave the wrong verdict. This is how they make sure that the system gets better and better all the time. In the backend, they have machine learning. But to optimize the model, somebody has to fine-tune it all the time. You cannot expect that the first model will be bulletproof, and that is the way they are doing it. That is why they are so good in this domain.

We have some unique use cases that we're working on with them, like integrating their solution with Zendesk and with Shodan.

In terms of architecture, and I know that they're going to improve this, the solution needs to be much more redundant. There was an outage a month ago in AWS, and that basically stopped the service for two or three hours. Although in two years, this was the first time that something like that happened, our expectation from a company like Perception Point is that it should work with either a multi-cloud or multi-region architecture, to improve the resilience. Perception Point can find a better way to maintain availability. In this case, the AWS problem was in North America, so if Perception Point had had a region in Europe, they probably would have been able to recover much more quickly, just flip it, and that would have been it.

I've been using Perception Point Advanced Email Security for two years.

Everything has worked as expected. It's working 99.999 percent of the time.

We get 50,000 to 100,000 emails per day and we haven't faced any scalability issues. I can't say there was a delay in emails because of this volume.

We aren't using the solution’s expanded product portfolio to protect more than just email, at this stage, but we are looking into it for the coming year.

We are also working with them with requirements from our end and we are really looking forward to a native integration with Zendesk. We believe that both companies, Zendesk and Perception Point, can benefit from that, and not just our company. Once Perception Point has an integration with Zendesk, it will impact many customers around the world in a positive way.

We haven't needed to use customer support so far.

We used FortiMail before, but it's not a next-generation email gateway.

Our initial deployment of Perception Point had some complexity, because when I started with my current company, we had on-prem Exchange and FortiMail. That made it a bit challenging. It was less an issue with Perception Point and more because of our architecture.

Once we moved to Office 365, it took two minutes. For an Office 365 customer, it's a very easy deployment.

The pricing is not cheap, but I can see the value. In security, if you are trying to save by giving up quality, that's a very bad decision. If there is high quality and it demands a high cost, you need to pay. Don't compromise on quality. If Perception Point is 99 percent accurate, and Proofpoint is 97 percent accurate but costs 20 percent less, I'll pay the extra 20 percent and sleep well at night.

We were thinking about Proofpoint. The big advantage of Perception Point is the Incident Response service. There is no product in the market that provides that kind of service. Also, although they were small when we started with them two years ago, we believed in the company and its vision. And it has proven itself. We have seen the outcome. Microsoft is 100 or 1,000 times bigger than Perception Point, but Microsoft misses so many threats that Perception Point catches. When it comes to advanced malware, there is a 20 percent difference, and that's a huge number.

If you are looking for the next generation of email gateway with an Incident Response service, select Perception Point without any second thoughts.

A few months back, I would definitely have said that the Incident Response service needed improvement, in terms of their responses and SLA, but because they really took the required action, I can't think of anything else that they should improve. I am really happy with what I have. If they maintain it, I will be a very happy customer.

We are currently working only with email protection. The way it's implemented in our company is that it scans 100 percent of our incoming email traffic. Perception Point has seven or eight scanning engines for detecting malicious activity, whether it's a phishing attempt, a malware attack, or any other type of cybersecurity threat. The way it's implemented is inline, so that if their engines detect something, the problematic email will be blocked and the end-user won't get it.

They also have an Incident Response team so that if something looks suspicious the IR team looks into it and approves or releases the emails. It depends on the use case.

Until we had the Perception Point, if a malicious or suspicious email got into a global user mailbox, if he didn't fall for it he would just manually send it to the security mailbox and then we would have to manually check it. Now, with the Perception Point engines scanning things automatically, it helps our security team to better see the malicious activity that has globally targeted employees.

In addition, it has reduced the number of alerts received by our endpoint layer by about 20 percent.

It saves our entire security team a lot of time and it gives our organization better protection.

What's really good about this platform is that  

• you have full visibility 
• it has a very nice and very friendly UI
• it's quick
• there's no latency in the scanning. 

I'm able to log into the system to see what's happened. I do that every day because in the company I work for things are a bit sensitive. I don't trust any solution 100 percent, so it's not just Perception Point. I like to see things myself and decide.

And the speed of scanning is very quick. The time it takes is almost nothing.

That's what we need. It pretty much gives us the perfect solution for our requirements.

In terms of their detection, if there is malware they detect it. For nine months we haven't seen more than a couple of true negatives, meaning malicious emails that did get through their scanning system. It has helped to prevent hundreds of threats.

We have had a few false positives, not that many, but a few. 

About 90 to 95 percent of the time, it's doing a great job but, the same as other companies, they can do better. They can add internal processes that will give an end-user the perfect solution. When I log in to the system, I can see all of the emails that were flagged as malicious. Some of them are false positives, and I get that. However, they have a feature where someone from the Incident Response team can look at an email and mark it as "verified malicious." You might think that if an engine detects it is malicious, and an IR team member has flagged it as malicious, it will definitely be malicious. But that's not always the case. Sometimes the engine detects it as malicious, and the IR team verifies that, but it's still a valid email, not a malicious one, and I have to release it manually.

But in the beginning, we had more false positives. Over time, the false positive ratio has gotten better. Instead of 20 false positives there are now about 15 false positives a month.

I've been using Perception Point Advanced Email Security for about eight months.

The solution is very stable. There were a few crashes but they weren't related to the solution itself. The solution is on a cloud service provider and the few times that it has crashed were because of an issue with the cloud service provider.

It's very scalable because it can give you lots of options. We are not using all  the options that are available, because we don't need them, but it can provide a very nice set of solutions.

Their technical support depends on the person I'm dealing with. I know the guys in technical support, and some of them are good and some of them have some tricky responses but, overall, they are pretty good.

Positive

This is the first solution of its kind that we are using. We started looking into tools like this because this kind of solution is a must-have tool.

The initial setup was very straightforward, very easy. It took just a few minutes and it started delivering value from the first minute.

It's used by our entire organization. In terms of maintaining the solution, it's just me and maybe one or two other guys in our whole company.

We had a PoC with another company, but Perception Point mwas better than the other product we were looking into, by far. The main difference was the management part of the platform. For me, as a platform manager, it's so easy to see and manage the entire operation. It's very easy to do stuff inside.

The detection rate was pretty much the same for both products. But we tested the other product for only about two weeks and Perception Point for about one and a half months, so that was different. The false positive rate was also pretty much the same.

This is the first product you should look into because it's really good.

If I have the option to use another feature or another product from Perception Point, I'll definitely consider them as a good player in the market, and I'll for sure start with a phone call to one of their salespeople.

The primary use case is email security.

We had a situation where we had a lot of spam and phishing emails in the organization. Perception Point Advanced Email Security was the only product that helped to stop that from happening.

Perception Point Advance Email Security has helped to reduce the number of alerts received by our endpoint layer by 20%. If they couldn't do a good job in blocking the phishing emails, eventually there would be an alert. This reduces the time and effort my team needs for addressing an alert. It reduces the time that users may have to deal with an alert and stop their internal jobs. We are a law firm. So, a lot of effort needs to be spent when an alert pops up.

This is the only solution that I know, which filters emails and secures mail relay. It is scanning all our emails and gives us advanced security information about it.

The solution has helped to reduce our false positive rate.

They need more customer engagement. The product works very well. The IR works very well when we contact them. However, day-to-day, they should have more in communication with their customers explaining new products and features. There is possibly something that if I would know about it, then I would buy and use it. Maybe I need it. They need to improve their communications.

I have been using it for two years.

The stability is very good. It is very close to 100%.

We are not that big of an enterprise organization, but it suits our needs. We have more than 500 users, which is thousands of emails a day. There have been no problems with the scalability.

The Perception Point Incident Response team acts as an extension of our SOC team. This is very important for us. This is a benefit provided for their main product of scanning our emails. If Perception Point can give me IR, this is really good versus other products that do not provide this kind of service. Perception Point's service is great. They are very professional. That reduces the time that my internal SOC has to deal with my internal IT person. They just send an email to the IR team at Perception Point, who continues the investigation and blocks any emails, if necessary. This is very good because it can reduce a lot of time and effort from my team. It is like an extension of my SOC, but external.

Positive

We previously used two different products. They didn't filter all the phishing and the spam messages into my organization well enough. That was the main reason that we switched to Advanced Email Security.

We used to get suspicious emails. After deploying Perception Point Advanced Email Security, those suspicious emails were blocked and no longer being sent to our employees.

The initial setup was straightforward. There were no problems with the implementation or integration with Microsoft 365. I don't remember any false positives.

The deployment took something like a day.

After deployment, it took a week for the solution to start delivering value when it comes to stopping threats.

We cannot measure it financially, but there has been return on the investment. My employees don't need to deal with alerts or phishing messages coming into their inboxes. This is where the return on investment comes in. My SOC team doesn't need to address every phishing or spam email. This saves us time so employees can continue with their work.

Perception Point Email Security has helped save about four hours a week for our SOC, which is nice.

The pricing and licensing are very fair compared to competing companies in the same field.

Perception Point did a really good job versus the other products that we evaluated. This is one of the main reasons that we chose them.

Do not hesitate to buy this solution.

I would rate this solution as nine out of 10.

We have a hybrid Exchange environment with an on-premises email server and also Office 365. We have multiple domains and the challenge was related to the email filter. We were doing a lot of things manually and we wanted a simpler system.

As of now, we are only using this product for email. However, in the future, we may implement some of the other modules such as SharePoint, Dropbox, or other services.

Perception Point has improved the way our organization functions in many cases. For example, there are a lot of malicious files coming into the company and the previous solution that we had was not filtering them in an effective manner. When we switched to Perception Point, it became quite handy and it started detecting most of them. I would estimate that nine out of ten were being found and then blocked.

The only challenge we were facing was a small number of false positives, which was okay because we were able to handle them properly. In terms of reduction, implementing Perception Point has resulted in a 50% to 60% drop in the number of false positives that we were experiencing.

In my experience, the detection capabilities have been good. I would rate the performance an eight out of ten because it is much better than some other products I have researched. I have seen examples of it detecting malware.

The vendor's incident response team acts as an extension to our own SOC team.  This is important because we need to know exactly what is happening so that we can report it to the top management, accordingly. 

Perception Point's incident response team has aptly handled the incidents that we have had. So far, we have only had a few, so our challenges have not been great.

With respect to engine optimization, I see a lot of features being upgraded every month. The engine seems to be getting more robust. I can see the differences in this AI-based technology.

I would estimate that each day, Perception Point saves our own SOC team between one and two hours. We were spending a lot of time on security and since implementing this product, we have been able to reallocate time and put it toward other tasks.

I estimate that overall, the number of alerts that we receive at our endpoint layer has been reduced by between 40% and 50% since transitioning from our previous product. Time-wise, this saves us between an hour and two hours a day.

In terms of how long it took to begin showing value, from the perspective of a customer, I think that it took about three days before we started to notice the difference. It required no tuning or customization and it was very clear in the console. The dashboard showed everything that it was doing, making the system very transparent.

The most valuable feature is the hardware-assisted platform module. The HAP is hardware-based and does not exist in many products. It is a unique CPU technology that can detect ransomware attacks.

The notification system is helpful. We received two notifications a day, which include the false positives.

Email alerts should be available in real-time. Alternatively, emails should be sent more often. It would be better to get between six and eight emails per day to help us understand what is happening.

At this time, we don't have an option to customize alert emails for our customers. They come directly from the vendor and we have no control over them.

The reports should be more customizable.

We have been using Perception Point Advanced Email Security for less than a year.

It's a robust product and we don't have to manually intervene when it comes to filtering when we use the engine. In production, it seems to be stable and we haven't faced any downtime.

Perception Point is used throughout the organization and we have 250 devices that are protected.

Scalability-wise, we haven't explored or tested it. I think the product can be scaled in terms of adding more features. More than its security, they can add more features, like email archiving, but I'm not concerned about it.

Whether we increase our usage depends on the business. If we continue to grow then we will continue using this product and we will increase the number of users. I think that it's quite capable of scaling with us.

When we need to create reports for management, we sometimes send queries to the support team. They are very responsive and normally, they answer the same day, within a couple of hours.

In total, I have spoken with them approximately 10 times and the experience was always good. I believe that the nearest support center is in Israel, and we're approximately two hours apart, yet the response was still quick and on time. They have always been able to resolve our issues.

We had challenges with malware when we were using another on-premises product. The product was MailMarshal, by Trustwave. The first reason that we decided to switch was that it was purely a signature-based system. The second reason was the support. Simply, they did not provide the support that we needed.

We had done some brainstorming before the project, and we could see that the setup process was transparent. As such, it was straightforward and even though there was some complexity, we could see exactly what they were going to do. All things considered, it was not overly complex.

The implementation strategy did not deviate from our IT policy and it was good. They were not using the MX pointing but rather, it was another kind of shared organization policy that is hidden from the attackers. The fact that the attackers cannot directly see what we are using, and it is similar to a shadow, is one of the features that we liked.

We are a 24/7 organization so for us, the main challenge was minimizing downtime. Downtime is crucial for us and we were able to complete everything in less than six hours.

From our side, there was one IT manager and two network administrators involved in the deployment. The two network administrators continue to work with this product but in a maintenance capacity.

We have absolutely seen a return on our investment. Cost savings and technology-wise, the HAP module is the feature that gives us the biggest ROI. It is implemented in hardware and not available in a lot of systems. It is incorporated directly into our data center for multilayer protection.

The price of this solution was within our budget and I think that it will suit most SMBs. There are no additional costs beyond the standard licensing fees.

We evaluated Mimecast at the same time that we were looking at Perception Point. It is a top runner in this space and they have more services, such as mail archiving. Ultimately, we found that Perception Point is a better product. It delivers approximately the same value for what we needed, but for less cost, and pricing was one of the other constraints.

We did not implement a PoC with Mimecast, so I can't make any technical or performance comparisons based on actual usage.

The biggest lesson that I have learned from using this product is that when you use smart products in a smart way, it can save you a lot of time with respect to productivity. This in turn allows us to look at how that time can be used for other major tasks.

My advice for anybody who is thinking about implementing this product is to start with a PoC. The vendor offers a 14-day PoC, which will give you a clear idea as to exactly what is happening. From there, you can choose to proceed with it or not.

I would rate this solution a seven out of ten.

Email protection from:

1. All malicious attachments. 
2. Phishing URLs
3. Phishing and spam emails.

We work mostly with Slack for incident management with their Incident Response team. Everything is recorded, maintained, and operated in Slack. This is easier for every team, making it easier for us to stick with this solution. They are online. We show evidence. In general, we have good communication.

Email is still the first victim, e.g., it is number one for hackers to use. This is why you want to have the best protection against those attempts. The mechanism Perception Point Advanced Email Security has against malicious, phishing attempts and all these hackers' attempts via email was the main reason to use this solution. It protects the company from all the email attempts that can put the company at risk.

They can do better on the spam. Today, Perception Point is not our only solution. We have two solutions, and they are the second in line because the spam filtering is not yet the best. 

From an operational perspective, as a customer, we want to have the ability to do all the changes that we want. I don't want to have to approach the Perception Point guys, and say, "Please do: A, B, C, D." I prefer to have my guys do our customizations.

I started to use Perception Point Advanced Email Security even before my current position. So, I would have been using it for about four years.

In the four years that I worked with them, we have had maybe two downtimes. Obviously, that is a good percentage of uptime. I haven't had any big issues with them. So, the stability is very good.

Two security engineers manage the solution out of the SOC.

We started small, then we expanded. Because it is a cloud-based solution, it is very easy to scale. 

From a user perspective, there are around 7,000 mailboxes with almost 300,000 emails a day. The solution is fully deployed (100 percent).

We have used the technical support. Usually we use them when we have a false positive or false negative. It depends. We are using Slack, so they answer right away. They check and investigate it, so the technical support is quite good.

The vendor commits to the solution’s effectiveness when it comes to detection, but this is around an accuracy and detection rate of 99.5 percent. They sometimes miss and we find them. Obviously, we report them back, then they try to fix and solve them for the next time, which is a good thing. 

It is very important that the vendor’s Incident Response team work in the background and proactively help. They are also providing 24/7 support, so if something is happening while it is night, holidays, or weekends, then it is important that they will be proactive if they find something suspicious or something that requires actions. Therefore, we need them to be responsible. Some of this stuff, we can manage on our own, but there is stuff that they need to do on the back-end.

I see from time to time that Perception Point is being proactive. They approach us, and say, "Can you check this, and this?" So, it does seem that they are an extension of my incident response.

Once we report any stuff that we found, and for some reason haven't detected, they do everything very fast. It is almost real-time, and they are closing this gap. If they found something that they missed, or we told them, then they acted quickly.

We had an email protection system that wasn't as good before. Now, our block percentage is much higher. So, we have fewer incidents happening in the company. Obviously, this shows in the ROI. I don't need my guys to start dealing with all these incidents. Perception Point Advanced Email Security also provides a very good investigation report of what it was trying to do. Then, we take it and leverage it, using it to improve our detection in our protection systems. Therefore, we have increased the effectiveness of our detection against malicious attacks, plus our SOC team is not spending as much time dealing with them.

We added Perception Point Advanced Email Security. We still have Fortinet FortiMail because of the anti-spam. Fortinet is the first in line to block the spam, but they are second in line when blocking all the malicious stuff.

The initial setup was very straightforward. We did it in two phases, mostly. 

The phase one: Right away, we did all the malicious attachments. Obviously, we did it first in detection mode. After we saw there were not too many false positives, we changed it to block mode quite fast. It took one to two weeks, then we just changed it to block mode. 

The second phase was phishing URLs, which was a little more complicated than attachments. It was for detection only on URLs. We whitelisted all the legit URLs that had false positives. Once we finished with whitelisting, we enabled it on block mode. From that moment, it was quite straightforward. There were no issues. 

We can go into full production (fully live) with this solution in one month.

Sometimes, we have a URL that goes into a whitelist, but it happens once a month or something. It is a very low number. 

After deploying the solution, you can see all the blocking right away.

One security engineer deployed it out of the SOC.

For specific incidents coming via email, we have reduced our SOC team time dealing with problems by 99 percent.

Perception Point Advanced Email Security has helped us reduce our false positive rate. We currently have a 99 percent success rate with one percent false positives. 

The solution has helped to reduce the number of alerts received by our endpoint layer. We have around 99.5 percent accuracy. This has affected our security operations a lot. The ROI has been very good. My guys have spent less time on investigating incidents from the endpoint, because it was already blocked on the Perception Point level. 

They are not the most expensive vendor. There are much more expensive vendors. They are not cheap, but they are not the most expensive. They are somewhere in the middle.

The pricing is for the number of emails. There are additional costs for the number of files and scans.

I did evaluate two other solutions, Mimecast and Bitdam. Eventually, it was a combination of cost, integration, and support. I did want something that would work very fast and adjust to my needs. Also, the cost was important. We wanted something priced in the middle, not too expensive nor cheap.

Perception Point Advanced Email Security had a very good detection rate score. Obviously, that was one of the reasons we chose them eventually. It was not only because they are nice, but because the solution was top-ranked.

If you are looking for a one stop solution that will deal with all your email security, then they are probably not the perfect one because you will still need to add more tools. If you are looking to be the best in security and stop all security threats coming through via email, add this solution to your current environment and trust that they have 99.9 success rates when blocking any malicious stuff. Depending on the company, you can either add them to your portfolio or replace other solutions that are not as good as them.

You need to remember to whitelist your internal services so they will not get blocked. For example, sometimes there are internal services that the company uses. Because they are internal, and not coming from the outside, most security tools will detect them as suspicious.

I would rate this solution as a nine out of 10.

Our customers use the solution for email security in a gateway. The solution is used to block malicious items hidden inside a document or PDF file. Perception Point Advanced Email Security could also analyze affected links embedded inside PDF documents.

The solution is also used to block the email gateway. Perception Point Advanced Email Security is similar to IRONSCALES.

Perception Point Advanced Email Security should make available more use cases.

I rate Perception Point Advanced Email Security a nine out of ten for stability.

I rate Perception Point Advanced Email Security a nine out of ten for scalability.

Perception Point Advanced Email Security's technical support is excellent. The solution has 24/7 technical support that you can always contact.

Positive

The solution's initial setup is very easy. The POC would take or two; it doesn't take long.

Perception Point Advanced Email Security's deployment doesn't take long. It can be done within a week, and sometimes it takes less than a day.

Perception Point Advanced Email Security is deployed on-cloud.

Perception Point Advanced Email Security is a good solution to try. It's easy to deploy, highly scalable, and really granular. It's a solution users can use that will really help the organization.

Overall, I rate Perception Point Advanced Email Security a nine out of ten.

Our primary use case is to secure our email channel. We're using Perception Point only for our email users.

Among the most valuable benefits are the results we have seen from the detection engine. Since implementing Perception Point, we have had zero suspicious emails coming into our inbox. We have seen a 100 percent decrease in attempts.

And there have been no false positives. There have been no cases where we could not see emails, due to Perception Point mistakenly blocking them, that we should be able to see. Everything is working as it should.

One of the most valuable features is the service provided by the incident response team. There have been cases where we have suspected that emails were fraudulent or something was suspicious. In those cases, we immediately contacted the incident response team through the platform, and we had a response in less than a minute. They confirmed that those emails were not fraudulent, and we were able to continue with those emails. The response and the capability and the professionalism of the team have been some of the good aspects. It has been very positive on the customer service side.

I don't have anything bad to say about the product.

One feature that might be nice to have, and I don't know if Perception Point could actually do this, would be that when you are sending an email with sensitive information, Perception Point would either block it or trigger a message saying, "Are you sure you want to send this kind of information to these recipients?" Something like that, before you make a mistake, would be helpful. Some type of AI agent that determines what, for us, is sensitive information, would be great.

We've been using Perception Point Advanced Email Security for exactly one year.

We haven't seen any hiccups. We've had full usability and haven't seen anything that was not working or that impacted our business operations. We have seen 100 percent uptime.

It's hard for me to talk about scalability because we only have about 15 employees. So in our case there are no scalability issues. But I know customers, friends of mine, whose companies have tens of thousand employees and use Perception Point, and they have had the same feedback about scalability: no scalability issues.

We used Microsoft ATP.

Before Perception Point, we had a high number of malicious emails coming in; constant attacks and nothing was blocking them, including phishing attacks and account-information takeover attempts. Because we're a financial institution, we were very much at risk of having funds wired to a fraudulent account. We noted numerous attempts. As a result, we researched the market and we chose Perception Point for our email channel.

I was working closely with our IT manager at the time of the deployment, and it took us less than five minutes to configure Perception Point for all of our employees. There are about 15 of us in the company, but it was super-fast and super-easy. It didn't affect our work at all. And we saw immediate impact, meaning after five minutes we were up and running, and we actually saw impact and improvements the same day.

The time to value, in terms of the solution stopping threats was between minutes and hours. It depends on when the malicious email was sent, but it really was immediate.

The pricing compared to the value Perception Point brings is super-competitive. They're not the cheapest in the market, but the value and the quality of the product are superior to anything else in the market, so we don't mind paying more for it. The value for money makes total sense for us.

Pricing is based on the number of accounts and seats that Perception Point covers. We are using 15 accounts, and if we become a larger company we'll just add more seats to the pricing. There is alignment between value and pricing, which we like.

Other than Microsoft, the solution that we had used, Perception Point was our first PoC, and we decided to proceed with them.

On the plus side for Perception Point were the 

• detection engine and high detection rate
• false-positive rate
• incident response team
• configurability, meaning set up time. 

Those are the main pros. There weren't any cons, honestly. They didn't fall short on anything.

Comparing the detection rates between Perception Point and Microsoft, there was a huge difference. We went from about 10 to 20 malicious attacks per day to zero today.

As for false positives, because Microsoft didn't even block most things, we didn't have any false positives when using their solution, but we had many alerts because so many things penetrated the system. So trying to compare false positives is not apples-to-apples. With Perception Point we have a 100 percent detection rate and zero false positives.

Get rid of everything you have and move to Perception Points, or at least try it. 

One of the things we really liked about the solution is that we were able to test it for about a week. There is an option to test Perception Point in parallel with what you have. That means nothing changes. Your emails still go through whatever solution you have in place, but you also see, on the side, what Perception Point detects and comes up with. We saw this huge quantity of alerts that we hadn't seen before. We saw how many malicious attacks and emails were coming into our inboxes. That was an eye-opener for us. The PoC was super-easy. It was a five-minute setup time and nothing happened on our business side. We were able to keep running as normal.

Once you try it out and you see the value, you see how much better it is than anything else, the decision is pretty easy.

The platform is great, it's easy to understand and configure. There are no issues on the product side. And I love the quick incident response team that you can reach out to.