Mimecast has acquired Code42, a leader in insider threat and data loss protection. Expanding on the success of its existing technology partnership, this acquisition marks a critical step in Mimecast’s strategy to revolutionise management and mitigation of human-centred security risks.

Insider threats present a complex and dynamic risk affecting the public and private domains of all critical infrastructure sectors. Defining these threats is a critical step in understanding and establishing an insider threat mitigation programme. The US Cybersecurity and Infrastructure Security Agency defines “insider threat” as the threat that an insider will use authorised access, intentionally or unintentionally, to harm the department’s mission, resources, personnel, facilities, information, equipment, networks or systems. Insider threats manifest in various ways: violence, espionage, sabotage, theft and cyber acts. An insider is any person with authorised access to or knowledge of an organisation’s resources, including personnel, facilities, information, equipment, networks and systems.

“Mimecast’s platform stands out in our crowded industry by focusing specifically on the critical moment of risk: a person opening a laptop,” said Mimecast CEO Marc van Zadelhoff. “Unlike fragmented point solutions, Mimecast provides a connected approach that is engineered to offer complete visibility and strategic insight across customers’ ecosystems, enabling intervention that helps them prevent costly incidents caused by insider risk and data exfiltration. Integrating leading solutions like Code42 broadens and deepens our proven security and human risk management capabilities.”

Code42 provides market-leading insider threat and data leak protection capabilities native to the cloud, enabling companies to seamlessly protect critical data from exposure, loss, leak and theft while accelerating incident response times. This acquisition will enable businesses to gain comprehensive visibility and strategic insight across the expanding attack surface. Code42 Incydr™ data protection rapidly detects data exposure, loss, leak and theft and speeds incident response – all without lengthy deployments, complex policy management or disrupting employee productivity. The solution offers a complete range of response solutions including automated micro-learning modules for accidental non-malicious risk, case management for efficient investigation and collaboration and automated blocking for the highest risk use cases.

“Employee collaboration is at the heart of successful organisations today,” said Joe Payne, president and CEO of Code42. “Protecting organisations from data exfiltration requires enhanced visibility into risky user activities across email, collaboration platforms, web, cloud and more. By joining forces with Mimecast, we can help customers quickly detect and respond to threats across their expansive digital environments.”

This acquisition reinforces Mimecast’s tenacious strategy to solve human risk through a recently unveiled connected human risk management platform and the Mimecast Engage human risk awareness and training offering – the result of the integration of Elevate Security acquired in January 2024. Mimecast will continue to maintain and support the existing Code42 customer base. Code42’s Incydr™ product is now available to Mimecast customers and these capabilities will be integrated into the Mimecast platform over the coming months.