What aviation can teach you about email security
Defense in depth is a common practice in both the physical and the cyber security realms. We create multiple layers to complement each other; each layer assumes its predecessor failed.
I travel a lot, and I find aviation security fascinating. It is a well-thought, well-orchestrated security process designed to detect and prevent various threats, most of which are based on known events. When you look at how aviation handles security and compare it to email security, you can see similarities as well as opportunities to build stronger parameters.
What Aviation Has in Common with Email Security
Identifying the Who and What
I might be oversimplifying it because I am sure there are a few other checks happening behind the scenes that we might not even be aware of, but, generally speaking, the following routine is what we experience after we check in to our flight.
- We have the TSA agent validating our identity to make sure we are clear to go (pun intended)
- We get our hand luggage scanned to look for suspicious content (the sent baggage was already scanned at this point)
- We get a body scan for the same purpose
Those checks are trying to answer a basic yet important question–who is taking what on board?
When you think about it, there are a lot of similarities, and as a matter of fact, the same applies to the cyber security world, specifically in email security.
Gateway solutions are trying to answer a similar basic question – Who is sending what?
They go and validate senders (sending IPs and more), looking for spoofs and imposters – Who? And scan the links, attachments, and even the body copy to identify the “What.” If all checks are clear, they allow the email to the inbox.
The Last Line of Defense
In the aviation security world, security doesn’t stop at the gate. In some cases, there is a marshal on the plane.
This last line of defense, the inner layer, was put in place to detect and respond to threats after the plane already took off. This layer inspects suspicious behavior and responds quickly before something bad happens. It is focused on the human element. It assumes the ”Who” and the “What” checks failed because some new and unexpected type of threat has emerged.
This also applies to email security. A modern email security approach is no longer solely relying on the gateway security checks because bad actors have discovered ways to bypass those. Next-gen mailbox-level protection allows for continuous behavioral analysis of emails already delivered to the mailbox. It can detect anomalies and quickly respond to threats by clawing emails back from all employees’ mailboxes.
As always, time is of the essence. We have a few seconds to respond before something bad happens. We don’t have time to waste on search queries and manual responses; we need to be able to act immediately before the first click is lured.
Put a marshal in your inbox.
We provides a SelfLearning NexGen User-Friendly platform combining AI and HumanInsights (HI) along with providing a number of advanced detection techniques for such Impersonation attempts, Polymorphic Attacks, Phishing, Fake Login, SocialEngineering, AccountTakeover, and URLs Links detection using ComputerVision Technology, 50+ engines scanning for advance MalwareDetection BEC Anomaly Detection using Natural Language Processing and offers a multi-layered approach, all combined with our Award Winning MLearning and AI-powered IncidentResponse and Virtual SOC remediating these attacks at the Mailbox level. SRC Cyber Solutions LLP in India provides the most comprehensive Mailbox Level Protection. If you want to know more kindly Click here