
Q&A: Trustifi’s Zack Schwartz on Navigating the Complex Email Security Landscape
Expert Insights interviews Zack Schwartz, VP of Business Development at Trustifi.

Organizations today grapple with cybercriminals using advanced tactics like personalized phishing and AI-generated attacks targeting email channels.
“Attackers are now harnessing AI to create convincing phishing content, automate reconnaissance, and adapt attacks in real-time,” warns Zack Schwartz, VP of Business Development at Trustifi.
Zack has spent the last seven years with Trustifi, building their sales, marketing, and operations from the ground up. Prior to Trustifi, Zack has had a 15+ year career in the technology space, focusing on Email, Data Center, Cloud, Network Security, and Telecommunications.
In this Q&A, Schwartz delves into how Trustifi’s AI-driven platform tackles these threats, shares his advice on how CISOs can implement robust email security solutions, and explores future trends and email security priorities for 2025.
Q. What are the biggest challenges facing organizations in the email security space today and how are threats evolving?
The email security landscape is increasingly complex, with organizations facing both persistent and emerging challenges. Threats have become more sophisticated, with cybercriminals leveraging advanced techniques such as highly personalized phishing and spear-phishing campaigns, Business Email Compromise (BEC), and zero-day exploits.
The sheer volume of emails that organizations process daily complicates the task of identifying malicious content without disrupting productivity. Attackers also employ advanced evasion tactics like polymorphic malware, domain spoofing, and URL shorteners to bypass traditional filters. The shift to cloud-based email platforms introduces new vulnerabilities, as misconfigurations and gaps in native security measures are often exploited.
Ransomware remains a significant threat, frequently delivered through malicious email attachments or links, while human error continues to be a key vulnerability, with social engineering targeting individuals to bypass technical defences.
The threats are evolving, as attackers can now harness AI to create convincing phishing content, automate reconnaissance, and adapt attacks in real-time. Deepfake technologies are emerging in BEC scams, adding another layer of complexity. Regulatory compliance adds another layer of complexity, especially when sensitive data is involved.
Q. How does the Trustifi Email Security platform help to teams address these challenges, and how do you differentiate the platform in this competitive space?
The Trustifi Email Security platform addresses modern email security challenges with an AI-powered, cloud-native solution that combines advanced threat detection, encryption, and Data Loss Prevention (DLP) into a seamless, user-friendly platform. It proactively blocks sophisticated threats like phishing, Business Email Compromise (BEC), ransomware, and zero-day attacks, while augmenting native security features of platforms like Microsoft 365 and Google Workspace. Trustifi simplifies compliance with one-click encryption and offers granular controls, automation, and detailed reporting to reduce IT workloads and enhance threat response.
What sets Trustifi apart is its ease of use, proactive AI-driven defences, and comprehensive end-to-end capabilities, eliminating the need for multiple vendors. Its focus on customer-centric solutions, tailored to industries with strict regulatory requirements, and its leadership in email security make it a standout in a competitive market. By prioritizing simplicity, security, and flexibility, Trustifi empowers organizations to stay ahead of evolving threats, while minimizing complexity.
Q. What are your top recommendations for CISOs in the process of looking for an email security solution?
When evaluating email security solutions, CISOs should prioritize platforms that offer advanced threat protection, leveraging AI and machine learning to detect and block phishing, Business Email Compromise (BEC), ransomware, and zero-day attacks.
A cloud-native solution that integrates seamlessly with providers like Microsoft 365 and Google Workspace is essential to address native security gaps, while maintaining compatibility with hybrid environments. User-friendliness is critical; solutions with intuitive dashboards, one-click encryption, and minimal configuration ensure high adoption rates across the organization. Strong compliance and encryption capabilities are also vital to meet regulatory requirements such as GDPR, HIPAA, and CCPA, along with robust Data Loss Prevention (DLP) to safeguard sensitive communications.
Real-time visibility and detailed reporting are key for monitoring threats and managing security policies effectively, while automation for tasks like threat analysis and response reduces the burden on IT teams. The solution should be scalable to accommodate organizational growth and evolving threats. It’s also important to assess the vendor’s track record, customer support, and commitment to innovation to ensure reliable, long-term partnership. Finally, CISOs should consider platforms that include employee training tools and phishing simulations to address human vulnerabilities and strengthen the organization’s overall security posture. These factors collectively help ensure the selection of a solution that aligns with organizational needs and enhances email security resilience.
Q. What trends do you expect to see in the email security space in 2025?
In 2025, email security will evolve significantly in response to increasingly sophisticated cyber threats. AI and machine learning will play a pivotal role, driving real-time threat detection, predictive analytics, and adaptive defences against complex attacks like polymorphic malware and AI-generated phishing. Zero trust principles will become foundational, with continuous identity verification and contextual access controls enhancing email security.
User-centric features will see growth, with advanced phishing simulations, gamified training, and interactive feedback helping strengthen the human element of security. Email security platforms will also incorporate advanced ransomware defences, such as enhanced scanning and sandboxing, to neutralize targeted attacks. Stricter global regulations will drive innovations in compliance tools, automating data classification, encryption, and reporting.
Cloud-native and API-first designs will dominate, enabling seamless integration with broader cybersecurity ecosystems and improving scalability. Platforms will also strengthen defences against supply chain attacks by detecting compromised vendor accounts and preventing lateral spread within trusted ecosystems.
Q. In your view, what should organizations’ top email security planning priorities for 2025 be?
Organizations should prioritize building proactive, adaptive email security strategies to combat increasingly sophisticated threats. Investing in AI-powered platforms that detect and prevent phishing, Business Email Compromise (BEC), ransomware, and zero-day attacks is critical.
Integrating zero trust principles into email security—such as continuous identity verification and context-based access controls—can help mitigate account compromise risks. Employee education should also take center stage, with advanced phishing simulations and gamified training to address the human element of security.
Ransomware resilience should be a key focus, with advanced sandboxing and malware detection capabilities to neutralize threats before they cause harm. Organizations must also strengthen their supply chain defences by monitoring for threats originating from compromised vendor accounts. Real-time threat intelligence integration will be essential for staying ahead of emerging attacker tactics.
Compliance tools that automate data classification, encryption, and reporting will help meet evolving global regulatory demands. Scalability and automation should underpin all efforts, reducing the burden on IT teams while preparing for organizational growth.
Further Reading
- Learn more about Trustifi
- Read our review of Trustifi Inbound Shield
- Read our guide to the Top Email Security Gateways