December 8th 2009, London:  Cloud-based email management service provider Mimecast announces that Mimecast Services for Exchange v1.0 is the first cloud service to receive the VerAfied™ security mark. Independent and rigorous testing by Veracode, provider of the leading cloud-based application risk management services platform, demonstrates Mimecast has taken due care in developing a secure software platform and evaluates vulnerabilities against industry standards such as the OWASP Top 10 and SANS-CWE Top 25.   

Mimecast’s service removes the complexities and risks of business email management by providing a single cloud-based service as an alternative to on-premise archiving, continuity and security.  The popular service integrates with on-premise email servers, and specifically Microsoft Exchange, to reduce server loads, automates mailbox size management and takes advantage of comprehensive Exchange-specific and user-defined information, such as folder structure and message metadata to deliver greater benefits to email users. 

The VerAfied security mark is a quality indicator for the security level of applications and software components.   Mimecast selected Veracode for its independent and completely transparent assessment service and due to it being based on industry-accepted standards.

Matt Moynahan, CEO from Veracode comments, “Modern cloud-based platforms provide tight integration with traditional on-premise software to provide seamless access to advanced services.  Customers are looking for independent proof that cloud-based vendors such as Mimecast rigorously test software that is deployed against industry-standard benchmarks.   Mimecast is the first hybrid cloud service to be awarded the VerAfied rating and this provides a differentiator for Mimecast and echoes their commitment to an important customer concern - the security and integrity of email and data."

Tim Pickard, Chief Marketing Officer at Mimecast comments, “As trusted custodians of confidential email and data of businesses, it’s fundamental we review every element of our physical and software security practices.”  Adding, “The VerAfied security mark is a quality indicator for the security level of applications and software components. 

Mimecast Services for Exchange is the key framework which provides seamless integration between Microsoft Exchange and Mimecast, therefore ensuring it is tested and evaluated for vulnerabilities by Veracode is an integral part of our overall security practices.” 

Mimecast Services for Exchange (MSE) - a Windows Service installed on Microsoft Exchange server acts as a bridge and a scheduler for the chosen MSE services such as Folder Replication, Message Stubbing and Folder Based Retention.  MSE is controlled by and communicates directly with Mimecast’s Web Services interface to provide two-way integration between Microsoft Exchange server and the Mimecast service.