Use Case

DMARC is a necessity for an all-in-one HR platform

For an all-in-one automated solution designed to simplify and streamline payroll and HR processes, having a DMARC platform to monitor outgoing email is a necessity. PayFit’s platform enables businesses to manage payslips, employee absences, leave requests, and other core HR functionalities efficiently and in compliance with local regulations.

PayFit has been using DMARC Advisor for their DMARC implementation and succesfully protected their domains from spoofing.

Having a proper DMARC policy was very important for PayFit for two main reasons.

  1. Mail deliverability is key for user satisfaction, “as our customers expect timely updates and notifications about payslips, leave requests, and approvals”.
  2. PayFit takes security very seriously, and email impersonation is a significant threat in the HR and payroll domain, where sensitive data is exchanged.

As PayFit mentions, “While our DMARC policy wasn’t terrible, there was definitely room for improvement. We lacked the visibility and insights to fine-tune and enforce policies confidently across all our domains and subdomains.”

Each organisation starting with DMARC should have clear goals in mind. PayFit mentions three goals:

  1. Setting a subdomain policy (sp) to quarantine
  2. Monitoring delivery impacts closely, with the ultimate goal of moving all policies to reject, to prevent domain spoofing
  3. Gaining complete visibility on legitimate senders and identifying unauthorised ones

Benefits of DMARC Advisor’s platform

PayFit is an organisation with multiple sending (sub)domains. Providing a centralised dashboard which gave them visibility into their DMARC alignment, delivery performance, authorised senders, and domain coverage was one of the core benefits.

Secondly, enabling proactive monitoring for misconfigurations, such as SPF/DKIM settings, combined with alerts whenever an issue arises. This made the aggregated reports dashboard and the Sender Manager the most favoured features.

I had prior experience with DMARC Advisor at a former company and was impressed with the platform’s usability and depth of insight. Upon joining Payfit, I realised we didn’t have a DMARC monitoring tool in place, so I recommended implementing DMARC with DMARC Advisor to fill that gap.
DMARC Advisor ensured all steps were completed and enough push was given to complete tasks and would talk with third parties if required.

Overall, we greatly appreciate the assistance of DMARC Advisor.

Jaume SerratsSenior Application Security Engineer at PayFit

The process of implementing DMARC

PayFit implemented DMARC on their domains, similar to how we, as DMARC Advisor, always advise our clients.

First, they made sure that all of the (sub)domains and tools had a proper SPF and DKIM configuration enabled. After that, they deployed a relaxed DMARC policy, using the DMARC Advisor platform to monitor compliance. Followed by progressively deploying a more restrictive policy.

The implementation of DMARC was led by the Application Security team at PayFit, in coordination with the IT and product teams. Since various departments at PayFit use email (IT, marketing, and product teams), it was “critical to coordinate changes with stakeholders across teams to list and configure SPF + DKIM for legitimate email sending tools.”

Recommending DMARC Advisor

We, as DMARC Advisor, are proud of the fact that we have yet another satisfied organisation using our platform and securing their email domains, as PayFit concludes:

“We would definitely recommend DMARC Advisor. It provides visibility necessary to harden DMARC configurations safely, and helps a lot with managing multiple services sending email from our domains.”

dmarcadvisor.com
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.