We're an E5 org with hybrid E2016. All user MBX's are in EOL, but we relay mail out to the internet from app servers that requires encryption. I'm working on a project to deploy Office Message Encryption (OME), and since our org deals with health, financial and other related PII I'm concerned that the OOTB DLP Templates and EOL Transport Rule settings may not be sufficient to catch 'everything' outbound that we need to have caught and encrypted.
Has anyone dug deep into the default templates/rules and done an assessment of their efficacy?
Next, are there any good 3rd party companies who specialize in the DLP templates that cover not just generic SSN/DL/DOB triggers, but also details of things like HIPAA and other state/federal regs that would enhance both our ability to catch the outbound mail for encryption and minimize false positives? We're currently using Zixcorp, which is our 1st outbound hop and who we want to get rid of and rely on O365 exclusively.
The only thing I've found is 'Nucleuz': https://www.nucleuz.com
They seem to have what I need, but I want to know about and evaluate any competitors (including native MS capabilities) before moving forward.
All input is appreciated.
Thanks.
