Five Questions To Ask About Email Whitelists
SC Media, Wednesday, January 14th, 2026
The company just approved a significant zero-trust investment that included microsegmentation, identity-first access, and continuous verification across the network's infrastructure. The board signed off - and implementation proceeded. Now ask the CISO how many permanent exceptions exist in the company's email security whitelist?
The answer will likely surprise many people - and it explains why organizations with mature zero-trust implementations still suffer business email compromise breaches that cost, on average, $50,000 to $120,000 per incident according to the FBI's IC3 report.