#1: Enable Comprehensive Mail Storage Setting to Backup Emails from a Non-gmail Account

Turn on the Comprehensive mail storage setting to ensure that a copy of all sent or received messages in your domain (including users using non-Gmail services) is stored in the associated users' Gmail mailboxes.

Lead Magnet 1_Keep a second copy of emails (1)

 

#2: Disable Bypass Spam Filter to Scan All Internal Emails and Suspicious Links

Disable the ‘Bypass Spam filter’ option to scan all your emails, including internal senders, for spam. 

Lead Magnet 2_How to stop clever attackers

 

#3: Configure DKIM Setting to Verify Email Authenticity

Configure DKIM for domain(s) by adding a digital signature to outgoing message headers using DomainKeys Identified Mail (DKIM) standard. 

Lead Magnet 3_DKIM_FULL_HD

 

#4: Configure SPF Setting to Receive Emails Only from Designated Email Servers

Enforce Sender Policy Framework (SPF) to prevent your users from getting spoofed. With SPF enforced, only designated mail servers will be authorized to send an email on behalf of your users.

Lead Magnet 4_SPF_FULL_HD

 

#5: Configure DMARC Setting to Verify the Email Sender’s Domain Authenticity

Configuring DMARC helps email senders and receivers verify incoming messages by authenticating the sender's domain. 

Lead magnet 5_Set DMARC to handle suspicious emails

 

#6: Enable Email Attachment Scan Settings to Scan Encrypted Attachments and Scripts

With additional Gmail attachment safety settings enabled, reduce the risk of malware infection by protecting against encrypted attachments and scripts from suspicious senders. You can also choose what action is to be taken based on the type of threat.

Lead Magnet 6_enable email attachment scan

 

#7: Enable Gmail Spoofing Settings to Prevent Impersonation Attacks

Enable additional Gmail spoofing safety settings to reduce your risk of spoofing based on similar domain names or employee names.

Lead Magnet 7_ Stay _FULL_HD

 

#8: Enable Security Sandbox Setting to Scan Attachments before Delivering It

Enable the Security Sandbox option for Gmail to scan or run attachments in a virtual environment before delivering it to the user’s inbox.

Lead Magnet 8_ Sanit_FULL_HD

 

#9: Configure SMTP MTA-STS Protocol to Enforce End-End Email Encryption

Configure SMTP MTA Strict Transport Security (SMTP MTA-STS in short ) protocol to provide an extra layer of security for all your outbound communication by enforcing end-end email encryption. 

Lead Magnet - Settin_FULL_HD

 

#10: Enable Spam Header Settings to Maximize Spam Filtering Capacity in All Routing Rules

Enable the spam header settings to safeguard your organization from spam attacks and to ensure maximized spam filtering capacity in all default routing rules. 

Lead Magnet 10_Add Spam Headers

 

#11: Use a Physical Security Key to Verify User Identity

Use a physical security key to verify user identity and to strengthen the password recovery process thus protecting you from phishing attacks. 

Lead Magnet 11_Two s_FULL_HD

 

Need help in fast-tracking your defense against ransomware?

Contact Us

 

SysCloud protects businesses and educational institutions from data loss and cyber threats when using office collaboration suites like Google G Suite and Microsoft Office 365. Some of our customers include Yahoo!, Travelodge, Gerber Technologies, Global Logic, Fair Portal, Quintstreet, and educational institutions like Palo Alto Unified School Districts, Frisco Independent School District, and Alabama State University to name a few. 

Google for education partnerMicrosoft education partnerAICPA SOCSSAE certifiedAWS partner