PageGroup protects its domains from mass malicious email attacks with OnDMARC

PageGroup logo


of PageGroup’s unique sending sources were sending malicious emails before OnDMARC.


of their domains have now been fully configured and protected with DMARC.


DMARC authenticated emails were sent and delivered in a 30-day period.

PageGroup logo







Key features

Meet the company

Employing over 7,000 people in 37 countries across the world, PageGroup’s four key brands provide recruitment services and career opportunities on a local, regional and global level.

OnDMARC rounds out PageGroup’s email security infrastructure

Juan Manuel Merino, Head of Cyber Security Operations, and his SecOps team at PageGroup had become aware of a huge amount of malicious activity happening across a large number of their domains, including the main domain, page.com.

In addition, hackers were also impersonating them via their trusted third-party contacts, so Juan actioned an urgent deep-dive into their email security. While they already had Mimecast set up as their Security Email Gateway, Juan “knew that implementing DMARC would give them visibility into who was impersonating them” and quickly took steps to get an implementation project off the ground.

Page Group logo

Dynamic SPF was a gift that made everything much easier. It gave us the internal autonomy to not have to rely on DNS administrators to make changes. It was one of the main reasons we chose OnDMARC over other competitors.

Juan Manuel MerinoHead of Cyber Security OperationsPage Group

Autonomy, full visibility and comprehensive support

Owing to a cyber-first mindset across the organization and knowing that an attack could potentially cause huge technical, economical, and reputational damage, Juan had unquestioning support from his CISO to secure a DMARC solution. Together with his team, he identified Red Sift’s OnDMARC solution as being the ideal candidate for their needs as it offered them:

  1. Instant autonomy

    Dynamic SPF, part of OnDMARC’s Dynamic DMARC functionality, allowed Juan and his Security team to work without dependencies on other members of the wider IT team - a key factor in their quest for a DMARC solution.

  2. Visibility into their third-party network

    It was imperative for Juan’s team to have visibility into who was impersonating them so that they could quickly secure authorized senders and subsequently enforce a policy of p=reject.

  3. On-demand implementation support

    Juan and his team worked closely with Red Sift’s Customer Success team who provided guidance and answers at every step.


Dynamic SPF brings independence and saves time

During Juan’s selection process for a DMARC provider, his team considered a number of DMARC solutions. However, it quickly became clear that OnDMARC’s Dynamic SPF feature stood out amongst the competition. Dynamic SPF automatically ensures every record for all third-party services is up to date at the point of query, so there is no static code to become outdated or obsolete - a significant advantage over static flattening that is the common technique adopted by other vendors.

The feature also enabled PageGroup to easily overcome the SPF 10 lookup limit for their many sending services, and Juan was able to take care of DNS changes within his own team. Juan noted: “We wanted to give ourselves autonomy. We did not want to embark on a project with dependencies on other IT colleagues in the company. In that sense, Dynamic SPF was a welcome addition.”