Messaging Security: Beyond E-mail

With nearly global deployment of gateway and host-based e-mail filters in place, many enterprise CISOs are cautiously optimistic that e-mail security problems are well in hand, but e-mail no longer holds a monopoly on electronic messaging communications. Over the past few years, large organizations have seen profound growth in the use of technologies such as basic Web mail, instant messaging and mobile devices as part of their messaging infrastructure.

New messaging technologies hold the promise of real-time business communications regardless of user location, device type, or network technology. This will inevitably lead to a ubiquitous, multi-channel messaging infrastructure that can bolster business productivity and efficiency. At the same time, new messaging channels create new threats that could lead to network disruption, data breaches, and compliance failures.

This report analyzes how large organizations are using and safeguarding both old and new messaging technologies. Specifically, this report answers questions such as:

• Do current e-mail security technologies provide adequate protection?
• Are large organizations embracing alternative messaging technologies - such as IM and Web mail - for business purposes?
• Do firms have global policies for messaging security that cover e-mail and emerging messaging channels? If so, how are they monitoring and enforcing these policies? If not, why not?
• Who is responsible for creating messaging security policies?
• How do mobile devices change messaging and security policies, procedures, and security technology deployment?
• What role does content inspection play in messaging security? How is it undertaken?
• To what extent has e-mail archiving been deployed? Has it been extended to new messaging technologies?
• Who are the dominant vendors - if any - in e-mail and broader messaging security?
• Is there a role for service providers in the messaging security market?

To help answer these questions, ESG conducted quantitative primary research with security, messaging, and other IT professionals at 192 North American public & private sector organizations.

For more information on the contents and findings of this report, please download the executive summary below.

Executive Summary