Mesh is not for everyone

It’s great that more providers are focusing on the needs of MSPs, but their solutions predate managed services, which means they’re being adapted for MSPs, and with that comes limitations.

Mesh is different because it was created in 2020 with input and ideas from over 300 MSPs, many of whom found existing solutions (even the MSP-focused ones) time-consuming and clunky to manage, and lacking in any cross-tenancy capabilities.

So we built a platform with unparalleled MSP functionality to help them solve those challenges, become more efficient, and better serve their customers - and this is what makes Mesh unique.

While the mass migration of corporate email to the cloud has brought so many benefits to businesses, it has also created opportunities for attackers. There are now over 345 million mailboxes on Microsoft 365, many of whom are using either Exchange Online Protection or Defender.

This means that the email security of thousands of organizations has essentially been homogenized and attackers know if they can evade detection by Microsoft, they can successfully deliver a harmful email to lots of mailboxes.

It is also relatively cheap and easy for them to test the deliverability of an attack before launching it. Mesh, used in either Gateway or API mode, detects the full spectrum of email attacks, including those specifically crafted to bypass Microsoft’s filters.

Microsoft also lacks any cross-tenancy capabilities for MSPs, making admin tasks tediously repetitive such as rule creation, email searching and threat remediation as they are only possible on a customer by customer basis.

We get it, migrating from one email security provider to another can be a daunting prospect and you’re already incredibly busy.

This is why we created Concierge Migration – our white-glove onboarding service that sees us do the heavy-lifting, making switching providers easy. We can recreate all your customers and their settings in Mesh, eliminating migration time by up to 95%.

Many email security solutions are multi-tenanted in that they allow MSPs to create customer accounts, which they can then log into and manage - but that’s usually the extent of it. You still need to manage customers on an individual basis, which means if something needs updating, you need to do it customer by customer.

For example, if you wanted to create a rule to allow email from a specific IP address or sender for every customer you manage and you manage 100 customers, this will likely take between 1-2 hours – whereas with Mesh, this takes less than 10 seconds.

You also likely lack visibility of traffic to your customer base as a whole, making threat hunting and responding very difficult, if not impossible. In a scenario where one user at one customer receives a suspicious email, you’ve no way of easily determining if any other user across your customer base has received the same or similar email.

With Mesh, you can centrally search email across all your clients based on lots of different criteria, and you can remediate any threats found with just two clicks.

Ideally yes, and 99.99% of the time we will. However, no security solution is 100% and the ability for MSPs to respond, respond quickly, and respond across your entire customer base is crucial and is an important value-add to your managed service security offering.

There are many scenarios in which MSPs create global rules in Mesh – both allow and block. If you are implementing a phishing simulation solution, you’ll need to create allow rules for their sending IP addresses to ensure they’re not caught by the filter, or you (the MSP) may be sending marketing emails from your CRM to all your customers that are being blocked – in both situations, it only takes a matter of seconds to create a global allow rule in Mesh. Similarly, there may be reasons to block an IP, or subject line as part of an incident response.

We regularly see widespread phishing campaigns targeting businesses in specific geographies and/or industries. It’s likely that because you currently don’t have the cross-tenancy visibility, you’re just not aware of this.